Overview

What is Sign-it®?

Sign-it is a software application designed to give Adobe® Acrobat® users the ability to embed legally compliant electronic handwritten signatures in documents. The binding and analysis features of Sign-it allow the document recipient to check the document for modifications and ensures secure document management. This application runs on a standard Windows based desktop computer and has additional features available when used with the SignatureOne® Profile Server in a distributed application environment.

Sign-it provides the ability to electronically route documents for signature approval and validation. Signatures are validated at each level of signing and changes to documents can be compared to original documents or viewed by rolling signatures back to each signer who has made changes.

What is an electronic signature?

An electronic signature is any electronic form of affirmation, consent or agreement from an individual that is captured and stored with an electronic transaction or document. The signature must include information specific to the individual and a clear statement of the signer's intent (e.g. that they are aware of the implications of signing and are agreeing to be legally bound by this).

How is a signature protected in a document?

When an electronic signature is captured using Sign-it the signature is bound to the document using a cryptographic hashing algorithm. The algorithm used within Sign-it is based on the National Institute of Standards and Technology (NIST) approved Secure Hashing Algorithm (SHA-1). This algorithm is used to create a one time key based on the data in the document, the signatory information and the signature itself. The signature information and hashing key are also encrypted using the Triple DES 128bit encryption algorithm to prevent tampering. As a result of this process, a signature can only be validated within the original document it was bound to.

What is SignatureOne Profile Server?

SignatureOne Profile Server is a separate product from CIC which enables users of Sign-it for Acrobat to either place their signature like a stamp into a document using a password or to authenticate the users biometric information in a signature before allowing the signature to be placed in the document.

SignatureOne Profile Server supports the non-repudiation (i.e. the inability of an individual to disclaim his or her signature) element of using electronic signatures. User profile and signature template creation require a controlled environment to insure that passwords are administrated properly and that the enrolled information used to authenticate a user can not be altered by other users.

This server based product also supports export of stamps and encrypted signature information to allow their use when a user does not have access to SignatureOne Profile Server, or is not connected to the local network, Intranet or Internet.

Additional information about this product and its features can be found on our website.

What is a signature stamp?

A signature stamp is a facsimile of a user's signature which is obtained using a password instead of a live signing. This stamp can be used in Sign-it but requires enrollment through the SignatureOne administration application.

What is signature verification?

Signature verification is the real time authentication of the biodynamic or biometric information inherent to a user's signature. Sign-it captures this information during the enrollment process using SignatureOne Profile Server and stores information related to the signature in a protected network database. When selected, any subsequent signature is verified against this information prior to the signature being placed in the document.

What is Ceremony®?

Sign-it captures various data needed to support the non-repudiation of an electronic document and the associated electronic signature. The data is representative of the Ceremony or process an individual would normally provide in the course of executing a transaction or document. It includes such critical data as the date/time of the transaction, claimed identity of the signatory, location, and reason for signing. These are the default Ceremony data elements that are collected during the signature process and can be modified through the preferences options of the product.

How do I obtain additional information about Sign-it or SignatureOne Profile Server?

Additional information about these products can be found on our website or you can request specific information by completing our internet based Inquiry Form. A representative from CIC will contact you directly for assistance.

What is an eSeal?

An eSeal is an electronic image of a company logo, a company seal, or a personal seal. Sign-it allows you to attach one to a signature block. File formats supported are JPEG, TIF, BMP, GIF and PNG.

What is a Digital ID?

A Digital ID (also known as a digital certificate) is a form of electronic credentials for the Internet. Similar to a driver's license, employee ID card, or business license, a Digital ID is issued by a trusted third party to establish the identity of the ID holder. The third party who issues certificates is known as a Certification Authority (CA).  The purpose of a Digital ID is to reliably link a public/private key pair with its owner.  Just as when a government issues you a passport it is officially vouching for the fact that you are who you say you are, when a CA issues you a digital certificate it is putting its name behind the statement that you are the rightful owner of your public/private key pair. For more information on Digital IDs, visit the VeriSign® website.

Sign-it uses the Digital ID to digitally sign the eSignature token. Only valid certificates at the time of signing are allowed to be used with Sign-it. No attempt is made to validate the signer's identity or check the revocation status of the certificate. Therefore, we support the claim that the certificate was valid at the time of signing.

What is an eKey?

An eKey is a USB Authentication Token, also known as a hardware USB security token. It plugs directly into the USB port and is used in public key infrastructure (PKI) environments for secure log-on, email and web access, and file encryption.  Sign-it currently supports the iKey™ 2032 from SafeNet, Inc. Sign-it allows you to access the Digital ID or eSeal that are available on supported eKeys.

What's new