Skip to main content
P
peterg78255717
Known Participant
March 26, 2020
Question

Confused on certifying authority

  • March 26, 2020
  • 2 replies
  • 1486 views

I have few documents that I want our customers to fill out and digitally sign and in a perfect world I would not want them to create a self-signed certificate as it seems there is nothing stopping someone from forging that, unless I am wrong on that. 
The plan we have is for us to email these documents on an as needed basis to customers to sign, how do I require/setup some a certifying authority? I looked around and didn't find what I needed. 
At this time I do not have the ability to use adobe sign. 

 

thanks!

This topic has been closed for replies.

2 replies

M
margueritek
Inspiring
March 27, 2020

You need to purchase a certificate (for each user) from a recognized Certificate Authority. I don't know where you reside, but there are Adobe recognized CAs in many countries. The requirements for issuing a user certificate that is recognized as Trusted by Acrobat is that the certificate be on a smart card or USB token, so that the signer is in control of the device. You can look at the Trusted authorities list in Acrobat to find potential issuers. If you are using AdobeSign, there is also the possibility of a cloud-based signature. Check on the AdobeSign site for a list of cloud signature providers.

T
Test Screen Name
Legend
March 27, 2020

Bear in mind each user must buy their own. You cannot buy a certicate on someone else's behalf, that would really break the whole identify-check thing.

P
peterg78255717Author
Known Participant
March 28, 2020

We have restrictions about using anything hosted or in a cloud due to confidentiality. So there is no way to assign a specific certificate authority to a pdf and have the user verify themselves prior to signature?
My current plan and please let me know if there is a better option given my situation. 

1.Emails pdf to perspective client via encrypted email

2.Client fills out 10 demographic questions, self signs with a digital id 

3.Client emails pdf back through encrypted chain

4.I store encrypted email chain and pdf as proof document was signed by user

T
Test Screen Name
Legend
March 26, 2020

You are absolutely right that a self-created certificate is no proof of identity. They can have a place in a secure workflow. What happens is that the self-created public certificate is shared FIRST and by a TRUSTED method. This is about human trust, not technology; for example you might phone to say "I'm sending you a certificate"; if your identity is known to the person you call, you have trust set up.  Certificates issued by a certifying authority, however, may cost several hundred dollars, will your customers happily bear that?

P
peterg78255717Author
Known Participant
March 26, 2020

Our company can pay for the certificates I just need to know the easier process to go about it. 

Terms & ConditionsAccessibility statement
Using the community Terms of use Privacy Cookie preferences Do not sell or share my personal information ad choicesAdChoices