Security of Signature Pads
The signotec signature pads have the highest security mechanisms available. This allows a complete chain of evidence in dispute. Depending on the integration, different techniques are used:
PDF documents can be signed inside the pad and not in the insecure environment of the PC.
The biometric data of the signature can be RSA-encrypted inside the pad using a public key.
RSA-signature of the displayed content and signature.
Upon delivery, each pad has a separate and unique RSA certificate for signing.
Storing of custom RSA-certificates inside the pad.
The pad can generate a RSA certificate.
Supported schemes are RSA PKCS # 1 v1.5 (with or without the hash OID), PKCS # 1 v2.1
Certificates can be certified by a Root Authority
Supported hash algorithms are SHA-1, SHA-256 and SHA-512.
In principle, the connection between the computer and the signature pad is encrypted at all times.
The signotec procedure is unique and incomparable, since various methods such as RSA and AES are used for encryption and key exchange.
It is therefore not possible to intercept or manipulate the USB connection. So you can be sure that the highly sensitive data of the biometric signature is protected at all times.