With the solutions of signotec advanced electronic signatures according to the EU-eIDAS regulation can be generated. In order to meet the corresponding legal requirements in the best possible way and to obtain a very high evidential value, biometric data of the signature are recorded and RSA-encrypted in the document.
To perform such asymmetric encryption, a key pair is required. Such a pair consists of a public part, which encrypts the data, and a private part, which can decrypt the data again if required. The keys are often used and stored in form of a certificate.
The overall evidential value therefore depends, among other things, on how many people have access to the private key and the probability of its subsequent manipulation. It is therefore particularly important to keep the private key safe and to record accesses, for example.
The most secure solution for key storage is to deposit the key with a notary - and signotec now offers such a key generated and stored by a notary for use.
The most important facts:
- The key pair was generated by the notary himself through his system.
- It offers a modern and secure key length of 4,096 bits.
- For the generation of the keys, the notary has created his own CA.
- Only the notary knows the private key and the passwords used.
- A decryption is only possible via the notary. Manipulation is impossible.
The advantages for you:
If you do not have the possibility to securely generate and store the private key within your company, or if you do want to delegate responsibility for it, you will benefit from the simple and secure provision of a key.
You are relieved of the task of generating and securing the key pair as well as monitoring access. Furthermore, in the event of a dispute, you act directly with the notary as the highest trusted authority, who decrypts the data and records the process.
Use of the key:
The public key is provided by signotec free of charge. Depending on the product, this key is part of the scope of supply for new versions. Alternatively, it can be requested directly at signotec.
In order to be able to encrypt signatures with the key, the key is simply configurated in the software or ideally loaded directly into the signotec signature pad.
For more information please do not hesitate to contact us.