Implement Secure Digital Signatures. January 19, 2012

Similar documents
Electronic Signatures: A New Opportunity for Growth. May 10, 2005

ELECTRONIC SIGNATURE REQUIREMENTS FOR LENDERS

Electronic and Digital Signatures

ELECTRONIC PRESENTATION AND E-SIGNATURE FOR ELECTRONIC FORMS, DOCUMENTS AND BUSINESS RECORDS ALPHATRUST PRONTO ENTERPRISE PLATFORM

Vendor Questions. esignatures Request for information InsureSign

Electronic And Digital Signatures

Automation for Electronic Forms, Documents and Business Records (NA)

Arkansas Department of Information Systems Arkansas Department of Finance and Administration

Vendor Questions. esignatures Request for information - RightSignature

Business Issues in the implementation of Digital signatures

Requiring Digital Signatures and Certificates

State of Arkansas Policy Statement on the Use of Electronic Signatures by State Agencies June 2008

CoSign for 21CFR Part 11 Compliance

HOW IT WORKS E-SIGNLIVE 1 INTRODUCTION 2 OVERVIEW

Knowledge based authentication (KBA)

Authentication Levels. White Paper April 23, 2014

Secured Signing for Documents

5 FAM 140 ACCEPTABILITY AND USE OF ELECTRONIC SIGNATURES

E-Signature Adoption Trends

Electronic approvals for forms FAQs

Savitribai Phule Pune University

PKI: Public Key Infrastructure

Smart Card- An Alternative to Password Authentication By Ahmad Ismadi Yazid B. Sukaimi

You re FREE Guide SSL. (Secure Sockets Layer) webvisions

For: State and County Offices

Article. Robust Signature Capture Using SigPlus Software. Copyright Topaz Systems Inc. All rights reserved.

The DoD Public Key Infrastructure And Public Key-Enabling Frequently Asked Questions

Alerts Pane Headers Alerts Pane... 3 Workflow Status Workflow Key... 4 Activity Filter Document Search... 5

Signature Authentication

Ombud Open Research: esignature Solutions

A unique biometrics based identifier, such as a fingerprint, voice print, or a retinal scan; or

Understanding Digital Signature And Public Key Infrastructure

Department of Veteran Affairs. Fred Catoe Office of Cyber and Information Security AAIP Project Manager March 2004

How To Validate a Digitally Signed PDF document. [7 th September 2006] SECURITY TRUST COMPLIANCE REGIONALITY

Adding Signer Authentication to an Envelope

Why Use Electronic Transactions Instead of Paper? Electronic Signatures, Identity Credentialing, Digital Timestamps and Content Authentication

Managing SSL Security in Multi-Server Environments

Electronic Signatures in Contract Management

Concept of Electronic Approvals

An Introduction to HIPAA and how it relates to docstar

Common security requirements Basic security tools. Example. Secret-key cryptography Public-key cryptography. Online shopping with Amazon

Using etoken for SSL Web Authentication. SSL V3.0 Overview

Encrypting*a*Windows*7*Hard*Disk* with%bitlocker%disk%encryption!

Oracle WebCenter Content

Enterprise SSL FEATURES & BENEFITS

Online signature API. Terms used in this document. The API in brief. Version 0.20,

Dr. Cunsheng DING HKUST, Hong Kong. Security Protocols. Security Protocols. Cunsheng Ding, HKUST COMP685C

Electronic Signature: Increasing the Speed and Efficiency of Commercial Transactions

IBM esignature overview

Single Sign-On. Security and comfort can be friend. Arnd Langguth. September, 2006

AlphaTrust PRONTO Enterprise Platform Product Overview

Innovations in Digital Signature. Rethinking Digital Signatures

Public Key Infrastructure. A Brief Overview by Tim Sigmon

A Noval Approach for S/MIME

NetSure Certificate means any of the types of Certificates that are subject to this Plan, as listed in Appendix A, List of Covered Services.

SIGNiX: Digital Signature Service

Entrust Secure Web Portal Solution. Livio Merlo Security Consultant September 25th, 2003

Knowledge-Based Authentication Challenge Response System

SYMANTEC NON-FEDERAL SHARED SERVICE PROVIDER PKI SERVICE DESCRIPTION

January 30, 2014 Mortgagee Letter

SECURITY IN ELECTRONIC COMMERCE - SOLUTION MULTIPLE-CHOICE QUESTIONS

Federal PKI (FPKI) Community Transition to SHA-256 Frequently Asked Questions (FAQ)

End User Encryption Key Protection Policy

System Requirements for Archiving Electronic Records PROS 99/007 Specification 1. Public Record Office Victoria

Outline. Computer Science 418. Digital Signatures: Observations. Digital Signatures: Definition. Definition 1 (Digital signature) Digital Signatures

Step 2: Configure Secure Secure Standard End-User Guide Version: Effective Date: 12-Mar-2014

PKI: THE SECURITY SOLUTION FOR THE INTERNET OF THINGS

RFP 95200, City-Wide Electronic/Digital Signature Solution. Vendor Questions (AFTER Pre-Proposal Conference on March 17, 2015) and Answers (in bold)

Intertek esignature Customer Reference Document Author: Application Support. Page 1 of 17

X.509 Certificate Management: Avoiding Downtime and Brand Damage

Digital Signature Application

Digital Signatures For Engineering Documents

POLICY ISSUES IN E-COMMERCE APPLICATIONS: ELECTRONIC RECORD AND SIGNATURE COMPLIANCE FDA 21 CFR 11 ALPHATRUST PRONTO ENTERPRISE PLATFORM

E-Signature. The Pharmacy Perspective

Information Technology Internal Audit Report

1 Definitions

PaperClip Incorporated 3/7/06; Rev 9/18/09. PaperClip Compliant Service Whitepaper

ELECTRONIC RECORD AND SIGNATURE COMPLIANCE. NASD Rules 3010(d) and 3110(c)(1)(C) SEC Rule 17a-4 15 USC 7001 et. seq. (E-SIGN)

Subject: Public Key Infrastructure: Examples of Risks and Internal Control Objectives Associated with Certification Authorities

Understanding E-Signatures: A Beginner s Guide

Electronic approvals for forms

Transcription:

Implement Secure Digital Signatures January 19, 2012

Implement Secure Digital Signatures: Overview Major initiative for UH & UIT for FY 2011/12 Digital Signature Project ($247,500); The Digital Signature Project will make possible electronic authorization of official university business (e.g., purchasing, travel, leave requests). Eliminating the need for print signatures will increase operational efficiency and reduce the university s reliance on, and investments in, paper. Fiscal Year 2011 Plan and Budget What is a Digital Signature? E-signatures are divided into two categories: 1. Electronic signatures - click and sign (i.e. type name); simple authentication 2. Digital signatures - utilizes public-key cryptography (PKC) / public-key infrastructure (PKI); complex algorithms using SSL certificates. 2

Implement Secure Digital Signatures: Objectives More efficient business processes Electronic authorization of official university business (e.g., on-line contracts, purchasing, travel, leave requests) Increased operational efficiency and reduced reliance on, and investments in, paper and other related expenses of printing Strong security for documents and messages where the identity of an author, sender, or the contents of a message must be verified and validated, or authenticated Legislative compliance with the Texas Administrative Code (TAC) and the Texas Department of Information Resources (TxDIR) 3

Implement Secure Digital Signatures: UHS Project Team Project Manager: Mike Mantell (UIT), Technical Lead: Brian Walker (UIT) UH Business Representatives: Administration & Finance, Office of the General Counsel, Purchasing, UIT UHS Business and IT Representatives from each campus UH Downtown: George Anderson & Erin Mayer UH Clear Lake: Cathy Bye & Margaret Lampton UH Victoria: Vangie Kolesar & Eric Mims 4

Implement Secure Digital Signatures: Compliance Requirements State of Texas Requirements incumbent upon UH: Offeror must utilize certificates for digitally signed communications obtained from a source(s) approved as an acceptable PKI service provider by the Texas Department of Information Resources (DIR) Texas Government Code 2054.060 - Digital Signature TAC 202.75.2.E, Information Resources Security Safeguards TAC 203.25 Acceptable PKI Service Provider TAC 203.44 - Acceptable Digital Signature Technology 5

Implement Secure Digital Signatures Forsythe Technologies Proposal Consortium of Forsythe, SIGNiX & Symantec/Verisign Multi-Solution Approach Certificate based VeriSign MPKI Internal solution Non-certificate - SIGNiX External solution Customers: Houston Area Realtors Credit Unions Universities (Penn State) 6

UH BUDGET IMPLICATIONS 7

Implement Secure Digital Signatures: Proposal 3 Year Contract Invoiced Annually - $240,037.50 Out-years subject to availability of funds Licenses included for: Verisign/Symantec MPKI (Internal Solution) 5000 User Seats (Faculty/Staff) 2 Administrators SIGNiX (External Solution) 10,000 External Signers (Students/Parents/Alumni) 50 Faculty/Staff users/admins Annual Maintenance 8

Implement Secure Digital Signatures: Proposal Discounted Pricing for Additional SIGNiX Licenses: Minimum 50 Seats users/admins 50 = $15,000 >100 = $275 >250 = $250 >500 = $225 >1,000 = $200 >3,000 = $175 9

Implement Secure Digital Signatures: Proposal Discounted Pricing for Additional SIGNiX Licenses: External Signers (Students/Parents/Alumni) Annual Price/Signer - Minimum 10,000 Signers 10,000= $25,000 >10,000 = $2.35 >30,000 = $2.00 10

Implement Secure Digital Signatures: Proposal SIGNiX Optional Services: Authentication Options: Charge/Attempt 1. Internal Click-thru: No Charge 2. Authentication w/question(s) created by Authorized User: No Charge 3. SMS Text Shared Secret: $0.25/attempt 4. Basic Authentication with SSN & DOB entered and validated with outside 3 rd party data provider: $1.00/attempt 5. Full Knowledge-Based Authentication (KBA): $2.50/attempt 11

Implement Secure Digital Signatures: Proposal Professional Services Fees (Not anticipated at this time): Senior Assets - $150/hour Project Management - $150/hour QA/Development - $150/hour 4 hour minimum 12

Implement Secure Digital Signatures: Next Steps Initial RLH implementation: Implementation of Resident agreement Follow-on with Meal Plan, FERPA, other RLH documents Implementation for other campus departments Marketing: Publicity Releases Purchasing: Sole Source Justifications Property Management: Off-Campus Property Forms Development of campus-wide deployment plan Leverage of other included services: encrypted email, etc. 13

The Solution Highlights of what this vendor delivers 14

Symantec/VeriSign Digital Signatures Strengthen integrity and audit potential of electronic transactions Public Key Infrastructure Symantec Authentication Solution Overview 15

Customers and Partners SIGNiX serves major enterprises directly and also through integration with leading technology partners, combining their industry applications and document solutions with our digital signature technology and know-how. Our clients benefit from superior trust and security as well as legally compliant solutions that are customer proven and market tested by: Accelerating the signing process Reducing operating costs Growing revenues About SIGNiX 16

Complete Digital Signature Service Everything you need to deliver a comprehensive solution to your customer: 1 2 3 4 5 6 7 8 9 10 X 11 12 Securely Deliver Documents Capture E-Consent Provide Real Time Identity Authentication Issue and Manage Digital Certificates Present Documents for Signature Capture Signature Ceremony Time Stamp the Transaction Support Process Workflow Provide a Complete Audit Trail/Event Log Communicate with All Signers Provide Tools for Corporate Administration Support Legal Non-Repudiation SIGNiX Solution 17

The Digital Signature Solution Suite from SIGNiX SIGNiX The Power of X 18

Starting the Signing Process Immediate Signing of Residence Agreement 19

Simple Authentication via SMS Shared Secret Immediate Signing of Residence Agreement 20

Certificate Levels and Interoperability Your documents have different levels of risk attached to them. The higher the risk, the more protection is available to achieve the reward. Full Identity Authentication High Risk Know Your Customer, Data Verification KBA Authentication Identity Vetting Sponsored Low Risk Click Wrap Rudimentary Medium High SIGNiX Solution 21

Implement Secure Digital Signatures: Proposal SIGNiX Optional Services: Authentication Options: Charge/Attempt 1. Internal Click-thru: No Charge 2. Authentication w/question(s) created by Authorized User: No Charge 3. SMS Text Shared Secret: $0.25/attempt 4. Basic Authentication with SSN & DOB entered and validated with outside 3 rd party data provider: $1.00/attempt 5. Full Knowledge-Based Authentication (KBA): $2.50/attempt 22

Create a Signing PIN Immediate Signing of Residence Agreement 23

View Document(s) Immediate Signing of Residence Agreement 24

Ready for Student Signature Immediate Signing of Residence Agreement 25

Student Signs Immediate Signing of Residence Agreement 26

Student Completes Signing Process, Parent is Notified Immediate Signing of Residence Agreement 27

Parent s Turn Immediate Signing of Residence Agreement 28

Agreement Fully Executed Immediate Signing of Residence Agreement 29

Digitally Signed PDF Provides Permanent Record Immediate Signing of Residence Agreement 30

Questions? 33

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information