Cloud is fast becoming the new normal for businesses. A recent survey by Intel revealed that in the next 16 months 80% of IT budgets will be invested in cloud technology. Considering the many benefits it is no surprise that companies are considering the move to the cloud.
On 31st May, Ascertia launched the SigningHub Summer '16 release (v6.5). With a new mobile app and support for mobile web, this release provides the best user experience to date!
In our latest series of blogs, we explain how SigningHub can be used across a company and how different lines of business can transform their document workflows. We started with the sales department, next is finance.
In this new series of blogs, we explain how SigningHub can be used across a business and how different lines of business can transform their document workflows. We start with the sales department and business development.
We are delighted to announce that we have been awarded Productivity and Collaboration Product of the Year at the UK Cloud Awards 2016. This is a great achievement for us and is recognition of our commitment to providing a secure e-signature solution that enables teams to accelerate the signing process.
Corporate seals have been used by companies to protect paper documents from forgery for a long time. A document stamped with the company seal implied that it was officially from the company, i.e. the legal entity rather than a natural person such as the company director.
Topics: digital signatures, eIDAS,, e-signatures, eu qualified signatures, EU news, european union, EU policies, EU data protection, eu legislation, european law, eu directives, eSeal, electronic seal, EU regulations, european legislation
It is challenging to write about Safe Harbor, the international data sharing agreement, because the situation is changing daily. A replacement framework was announced in early February. Five days later, scepticism and confusion followed.
On 22nd February Ascertia launches SigningHub Spring '16 release (v6.4). Packed full of features and security this revision builds on the solid foundation and simply improves the best signing service available.
Local signing - i.e. where the signing key is held locally by the user on a Secure Signature Creation Device (SSCD) typically in the form of a tamper-resistant smartcard or USB token - had hit a serious roadblock in recent months.
The successful digitisation of business processes is not an easy undertaking. Paperless offices may still be some way away. However, many core business tasks have been significantly improved through innovative technologies and solutions. One of the main drivers behind these enhancements is the desire of businesses for a more productive, efficient and cost effective workplace.
Have you considered whether your e-signatures can survive court scrutiny? It's unlikely you would be asking your customers, employees or partners to sign documents unless you wanted their agreement to be legally-binding in case of disputes.
Rod Crook, our Solutions Director, was recently asked by industry publication Fresh Business Thinking to write a guest article. Titled ‘Going digital: The benefits of digital signatures for businesses’, the article explains the advantages for organisations searching for ways to improve business efficiencies. He also offers advice around how to choose a suitable solution in a congested marketplace.
Important documents are signed all the time: wills, contracts, government documents, the list is endless. The person’s signature identifies the signer, but also authorises the document by proving that they agreed to the terms stated.
We often get asked how the digital signatures produced by SigningHub are different from DocuSign. Although at a basic level the document signing services may seem similar, there are significant differences when you take apart the e-signatures and analyse the security mechanisms being employed.
Today is World Paper Free Day, an initiative by AIIM (The Global Community of Information Professionals) to reduce the amount of paper generated in workplaces by everyday tasks.
On 2nd November Ascertia launches the SigningHub Winter '15 release (v6.3). It's packed with state of the art security and ease of use features benefiting first-time users as well as power users. We're confident that you will be pleased with the significant enhancements, all aimed at improving the user experience. As always, all existing SigningHub users will be automatically upgraded.
One of the most confusing aspects for an organisation wishing to deploy an e-signature solution is understanding the technical jargon that different providers use. There are many e-signature schemes being offered in the market, with significant differences in terms of security and trust.
However there is very little documentation that explains these different techniques and thus allows them to be compared and assessed for their suitability in meeting a particular business purpose. Due to our extensive research in this area we have developed a high-level eBook "Choosing the right type of e-signature" with key information that helps business managers and technical architects understand the various types of e-signature that exist.
Implementing an e-signature solution successfully can be a great investment, quickly saving enormous time & money for your organisation, whilst easing life for your customers, employees and partners. But how do you get it right and not be left with yet another system for users to learn and/or avoid?
From our experience, it’s all in the integration - that is, how seamless is the user experience from interacting with your business applications to interacting with the e-signing platform in getting documents prepared, sent, signed and completed.
On August 5th Ascertia launches the SigningHub summer '15 release (v6.2). There are a number of enhancements, all aimed at improving the user experience and delivering out-of-the-box integration with common business applications. As usual, all existing SigningHub users will be automatically and seamlessly upgraded.
A quick background: Advanced digital signatures require each user to have their own unique signing key. The security of the system then relies on the fact that the user's private signing key is not accessible to anyone else other than the owner. If implemented properly it allows an independent judge to determine that any digital signatures produced with the user's private key must have been created by the owner and no one else - thereby delivering the "non-repudiation" property where signers can't reasonably deny the signatures they have created.
There is a big change coming in terms of the legal recognition of electronic signatures in Europe. It's the new eIDAS Regulations, which will replace the old 1999 EU Directive on Electronic Signatures. To help you understand the new landscape we have put together a summary of what the new regulations promise in terms of making cross-border trusted communication easier and how we are ensuring our SigningHub platform remains the ideal vehicle for providing trusted online signing services.
The UK government's Cloud First initiative is helping organisations embrace digital document processes. This helps drive efficiencies and reduces the costs associated with ink-signing paper documents, scanning and returning them.
The Cabinet Office GOV.UK Verify project also provides the ability to check someone's trusted identity when they need to authenticate themselves. What is needed are trusted document workflow and signing solutions that make it easy to embrace simplicity with high security and long-term protection against unauthorised or fraudulent changes.
Topics: digital signatures
A security advisory was published on 11th November 2014 by Microsoft, describing a security threat that may allow arbitrary code execution by hackers. This vulnerability could allow remote code execution, if an attacker sends carefully crafted packets to a Windows server. This issue lies within Microsoft's SChannel implementation, and has been rated as "Critical" by Microsoft, for all the supported releases of Microsoft Windows. This is a test
Bulk signing is a powerful feature of SigningHub which allows users to digitally sign multiple documents in one go thus saving substantial time in opening the document and signing them one by one. This feature works both when you are using either a local (client-side) signing keys OR server side signing keys.
OpenSSL is one of the most commonly used toolkits to implement PKI services. It is free/open source, regularly updated and comes bundled with Linux. You can also install its binaries on Windows. Although issues in the SSL protocol have been identified in the past, this time most OpenSSL implementations have a critical vulnerability.
Researchers in Codenomicon and Google found the vulnerability inside the OpenSSL implementation code, see this link for more details: CVE-2014-0160. Once exploited, a threat agent can access sensitive information which includes passwords and secure key information. OpenSSL has recently provided a patch to address this vulnerability.
The SigningHub “in-person signing” feature is a new capability that enables a person to electronically sign documents without requiring them:
SigningHub currently enables users to create a combined e-signature with a digital signature. The e-signature part is the hand-signature image displayed on the document, whilst the advanced PKI digital signature is the part that is embedded into the PDF document and is verifiable upon clicking the signature appearance.
In the real-world often it doesn't matter who signs a document but rather do they have the sufficient authority to do this. That is the "identity" of the signer is not as important as the "authorisation". E.g. a Purchase Order typically requires an authorised member from the Procurement department to sign-off on it.
We have recently added a strong user authentication method into SigningHub that uses X.509 SSL/TLS client authentication certificates. This feature is only available to on-premise installations of SigningHub.