As well as the implementation of eIDAS, e-signatures have been enhanced with the development of remote signing. Until recently many high-security industries used local signing solutions to sign electronic documents.

Local signing requires locally-held hardware such as a smartcard or token and specialized software to validate e-signatures. The major drawback of local signing is that it requires the signer to carry cumbersome hardware with them to sign – this is especially arduous if the signer is on the move and needs to e-sign urgently. 

In contrast, remote signing utilizes connected mobile devices to enable signing authorization from anywhere. Individual signing keys are held in server-based systems or secure cloud services on a Hardware Security Module (HSM).

The Ascertia ADSS SAM Appliance has an embedded HSM, Utimaco’s CryptoServer CP5 HSM, which is Common Criteria (CC) EAL4+ certified according to the eIDAS Protection Profile EN 419 221-5.

eIDAS recognizes remote signing and supports its use for the creation of remote qualified signatures – the highest trust level for signatures in Europe.

In order to be compliant with the eIDAS regulation for Qualified Remote Signatures it is important to be able to provide proof that the signing keys were always under the sole control of the user and they reside within the premises of a Qualified Trust Service Provider (QTSP). Ascertia’s ADSS SAM Appliance is a tamper protected device that authenticates signers and requests formal authorization to use their signing key.

Ascertia is currently undergoing Common Criteria EAL4+ certification for the eIDAS EN 419 241-2 standard to ensure compliance with the eIDAS regulation for creating remote qualified signatures with Level 2 Sole Control.