BLOG | VIDA DIGITAL IDENTITY

How Digital Signatures Work

Written by VIDA | Apr 17, 2023 4:16:00 AM
Digital signatures are used to secure electronic documents in Indonesia. Why use digital signatures for documents and transactions when traditional signatures are easier? A digital signature, as defined by the Cybersecurity & Infrastructure Security Agency (CISA), is a type of digital signature that uses a mathematical algorithm to validate the authenticity and integrity of a message, such as an email, credit card transaction, or digital document.

Basic Concept of Digital Signatures

Before diving into how digital signatures work, let's understand the basic concept. Digital signatures are not limited to just document authentication; they can secure digital transactions.

1. Digital Signatures Require an ID Card

The process of creating a digital signature starts with registration by the individual or organization with a Certificate Authority (CA) like VIDA. Applicants must provide valid identification documents such as a KTP (Indonesian ID card) or NPWP (tax number), and other necessary documents. The CA issues a digital certificate configured with the user's official identity.

2. Digital Signatures can Prevent Document Forgery 

Document forgery can cause financial losses and damage reputations. Here’s how VIDA's digital signatures ensure document authenticity and integrity:

  • Authentication Before Signing
Before signing digitally, both the sender and receiver must authenticate. VIDA uses biometric authentication with liveness detection to ensure the signer is who they claim to be. This ensures the same validity as traditional signatures because both require the signer's 'real presence.'

Digital signatures involve asymmetric cryptography, using a public key infrastructure (PKI). VIDA's system generates a pair of cryptographic keys: private and public.

   - Private Key: A code only held by the digital signature owner.
   - Public Key: A code linked with the digital certificate and encrypted document.

  • Cryptographic Hash Usage
Digital signatures ensure not only the signer's identity but also document integrity using cryptographic hashes. A hash converts the document's entire data into a unique value, serving as the document’s digital fingerprint, changing with any modification. Tools like Adobe Acrobat and online verification tools can check hash values to verify document authenticity.

  • Non-Repudiation
Digital signatures provide non-repudiation, meaning the signer cannot deny their action. Every action on the document is recorded in a secure audit log, providing proof if disputes arise.

3. Digital Signature Authenticity Can Be Checked 

To sign a digital document, the signer uses their private key to create a code representing their digital signature. This certificate is digitally signed by the CA and can be verified by third parties at [tte.kominfo.go.id](https://tte.kominfo.go.id/verifyPDF) to ensure authenticity and integrity.

Use VIDA Sign

VIDA Sign automates and manages documents securely:

1. Regulatory Compliance

VIDA Sign ensures secure digital agreements, compliant with ISO 27001 and Webtrust Certification, legally binding in over 40 countries.

2. Technological Security

VIDA offers solutions securing digital identity transactions, from onboarding (VIDA Verify), transaction security (VIDA Auth), to document signing (VIDA Sign), ensuring fraud protection throughout.

For personal use, download the VIDA Sign App on Playstore or Appstore. For enterprise needs, contact VIDA Sales.

Simplify your business operations with VIDA Sign for Business. Enjoy 500 free digital signatures, document templates, and a dashboard for managing departmental signatures. Experience hassle-free document management and enhance operational efficiency.