IDnomic Sign

IDnomic Sign server: This server can be accessed in “Web services” mode (API REST) allowing the integration of the electronic signature within business applications. The signers can use signature certificates stored in a smart card they hold, or certificates centrally located at the IDnomic Sign server.

Standardized signature policies: These policies will be used when the signature is built in order to control and Sign, it is possible to define advanced signature policies authorize, for a given policy, an encryption algorithm, a key size, a trust authority, etc.

Advanced verification of certificates: Ths is an optional server component of IDnomic Sign. It allows to build and verify certification paths against the validation policies configured in its administration. The verification services are available in web service mode. The verification can be done in respect to the present time or to a past date. Trusted Certification Authorities can be automatically extracted from the European “Trusted List” (TSL).

Remote Qualified Signature: As an option, the “Explicit Consent Manager” is a dedicated appliance to perform remote qualified signatures in compliance with eIDAS. This hardware is used in addition to the IDnomic Sign server to manage the signer’s consent via an OTP or a FIDO authentication. This appliance behaves like a “Signature Activation Module (SAM)” according to the ETSI CEN 419 241-2 terminology.

Signature creation: creation with the requested format using the signature policy and the configured cryptographic token; multiple signatures and co- signatures are supported.

Immediate verification and augmentation: cryptographic signature verification following its creation and adding the necessary information to maintain its long-term validity with report generation

Subsequent verification: verification by relying parties and generation of a report.