Electronic Signing or digital signing through Hardware Security Module

Electronic signing or digital signing is used in different ways to establish authenticity and non-repudiation. It is performed using long-term and short-term signature certificates with the help of hardware security modules. Let’s discuss it in detail.

What is long-term signature certificate?

Long term signature certificates are obtained from Controller of Certifying Authorities in India (CCA) - licensed CAs. The user/subscriber needs to provide all the required information (e.g., identity, geographic location, etc.) according to the class of certificate they need. Usually, class-2 and class-3 certificates are obtained for legally valid signatures. And, users have complete control of their private key and certificates.

What is short-term signature certificate?

Short term signature certificates are used for instant document signing. These certificates expire in very short period of time. Practically, each document signing requires a new certificate.

eSign architecture is defined by CCA on their website. According to CCA, it is mandatory to use FIPS 140-2 Level 3 hardware security modules when a user’s private key is used unattended. The private keys must be stored in the HSM for its entire lifetime. It is a well-known fact that security of the user keys is paramount. Use of HSMs protects the private keys. In addition, off-load cryptographic functions of application on the HSM improve the performance significantly.

And, HSMs offered by Futurex are best suited to meet the compliance, security and signing performance with an extensive range of valuable features:

  • Support for various cryptographic algorithms such as 3DES, AES, RSA, ECC, HMAC, SHA-2
  • Excellent API support including Excrypt API, PKCS #11, Java, and many more
  • Intuitive graphic interface that brings ease to the cryptography process
  • Offers protected secure environment and ability to load your own software directly into the HSM
  • Hassle free and secure remote management along with Syslog support

Once again, Vectra series has been scoring the top rank, when it is about the hardware security module for document signing or e-signing. This arsenal of hardware security modules has some of the extremely popular products such as Vectera Core, Vectera Plus, Vectera Enterprise, and Vectera Galaxy. These elegantly designed HSMs are powered with numerous quality driven features such as cutting-edge alert and monitoring, an intuitive user interface. It lets the organizations easily integrate the Excrypt API to experience the top-notch inbuilt cryptographic functionality of HSMs.

Here are some of the advantages of Vectra series hardware security modules associated with electronic signing:

Best suited for:

  • Digital document signing
  • PDF signing
  • GST signing
  • E-receipt signing
  • API based signing
  • Automated document signing

Loaded with world's most advanced encryption mechanism

Compatible with cross industry applications

© Kryptoagile Solutions Pvt. Ltd. All rights reserved (2017-2018).