Embed Size (px)
Citation preview
Think twice before you sign again!
Are Digital or Electronic Signatures in your future?
Agenda for today
Develop a deeper understanding of the two technologies and how they differ?
Is On Prem or SaaS the best model for my organization?
There is a clear return on investment by adopting digital and/or electronic signatures. Attend the webinar and we'll send you white papers and ROI tools.
Where in my organization can I use this type of solution and improve business processes?
See live demos of both technologies and ask questions.
Digital Signatures Demystified: defined, defensible, & deployable
Document Integrity Confirmed
Document Tamper Detected
Realty is…
An Electronic signature could be nothing more
than your name on an email
An image of your traditional signature
A biometric signature
Application based digital signature
PKI based digital signature
What is a Digital Signatures?
Digital Signatures are the most secure, most advanced form of an electronic signature.
What is an Electronic Signature?
Electronic signature can be something as simple as “check this box” to accept/approve like we see on the internet, it can also be an image/copy of someone’s signature applied to a document.
Evidence: Authenticates a writing by identifying the signer with thesigned document. When the signer makes a mark in a distinctivemanner, the writing becomes attributable to the signer.
Ceremony: The act of signing calls to the signer's attention the legalsignificance of the signer's act, and thereby helps prevent"inconsiderate engagements”.
Approval: In certain contexts defined by law or custom, a signatureexpresses the signer's approval or authorization of the writing, or thesigner's intention that it have legal effect.
Efficiency and logistics: A signature on a written document oftenimparts a sense of clarity and finality to the transaction and may lessenthe subsequent need to inquire beyond the face of a document.
Deterrence: To discourage transactions of doubtful utility.
What A Signature Accomplishes
Security – The signer is the only one who could have signed
Integrity – What was signed has not been altered betweenpoint A and B
Non Repudiation – Connects a signer in a way that preventsdenying the agreement
Authenticity – the signature can be authorized by a secureprocess
Enforceability – the signatures must be verifiable by relyingparties
What Must Be Achieved
Is it legal in Canada?
Uniform Electronic Commerce Act
• Electronic Signature: "information in electronic form that a person,directly or through an agent, associates with an electronic documentfor the purpose of establishing a connection between the electronicdocument and the person.“
• Effect of Electronic Signature"A requirement under [enacting jurisdiction] law for the signature of aperson is satisfied by an electronic signature if:(a) the electronic signature is reliable for the purpose of identifying theperson, in the light of all the circumstances, including any relevantagreement and the time the electronic signature was made; and(b) the association of the electronic signature to the relevant electronicdocument is reliable for the purpose for which the electronic documentwas made, in the light of all the circumstances, including any relevantagreement and the time the electronic signature was made."
Canada Evidence Act2000 Amendment on Authentication of Electronic Documents
• 31.1 Any person seeking to admit an electronic document as evidence hasthe burden of proving its authenticity by evidence capable of supporting afinding that the electronic document is that which it is purported to be.
• 31.3 The integrity of an electronic documents system is proven:a) by evidence that the computer system was operating properly;b) if the electronic document was recorded or stored by a party who isadverse in interest to the party seeking to introduce it; orc) if the electronic document was recorded or stored in the usual andordinary course of business by a person who is not a party and whodid not record or store it under the control of the party seeking tointroduce it.
Electronic Records as Documentary EvidenceCanadian General Standards Board - CAN/CGSB-72.34-2005• Owner of e-record needs to prove the reliability of the system used tocreate/maintain the record
• Reliability is shown by demonstrating use of system in normal course ofBusiness
• Compliance with the standard is not mandatory.
• Compliance with the standard is a safe harbour, not a guarantee of anylegal result.
• The standard is a statement of best practices.
Best Practices
E-Signature• Is adopted by Clear process for capture of intent and can be attributed to signer• Is linked to signed record
E-Record• Single, reliable business record with evidence of signature• Accurate presentation and review of documents• WYSWYS – link between review and signatures• Electronic records can be accurately reproduced at later dates• Available and accessible to all parties
E-Transaction• Controlled process ensures compliance with laws, regulations• Creates secure audit trails of entire process• Electronic evidence can be easily reproduced or played back
Digital Signatures Demystified: defined, defensible, & deployable
The vendor landscape
Forrester Wave™: E-Signature, Q3 ’12
Here’s why you want signatures
We do know paper is too expensive!
Before
Source: AIIM 2013 Survey
After
What documents attract a signature
But is cost our only concern? Security
Compliance
Speed
Productivity
ROI
Did you ever ROI pens, paper, file cabinets?
What other concerns are there?
Source: AIIM 2013 Survey
Pricing
On Premise
Hardware
Software
Deployment
Integration (ECM and Back office)
training
Cloud/saas
No hardware
Software web based
Deployment
Integration
training
Pricing Model
TIME
COST
Cloud
On Premis
e
Pricing assumption model
On prem - 100 users $33,000.00 1st year
Yr. 2 costs - $5000.00
Cloud – 100 users $24,000.00 1st year and
subsequent years
Yr. 2 costs $24,000.00
Despite the business benefits reported by existing users, digital signature projects are not given a high priority within IT departments.
Elsewhere in the business, non-familiarity with the technology and a reluctance to change time-honored ways of working are given as barriers to adoption.
Convenience and simplicity of both use and administration are obvious factors here. We have seen that those intending to purchase a digital signature system are also looking for it to be easily integrated into their ECM system.
Source: AIIM 2013 Survey
Solutions we’ll demo today
What’s in the CoSign System?
Signature pad
2 blue MiniKeys (backup), 1 red MiniKey (license)
Serial Cable (RS-232A) and a USB-to-Serial adapter
Installation CD
Documentation, MSIs
CoSign Central Enterprise appliance
Any signature is based on trust in the signor'sidentity and the process by which it is invoked
The process must have a policy behind it
Trust is not inherent in any technology
Technology must be used in a trustworthy mannerin order to establish trusted systems
Even a system that is being used in a trustworthymanner is ineffective if we cannot prove itsreliability
Future transactions that cannot be fully reduced topaper
In the End- Keep In Mind!
About Process Fusion Inc.
