homepage Welcome to WebmasterWorld Guest from 54.234.74.85
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Become a Pro Member

Visit PubCon.com
Home / Forums Index / Code, Content, and Presentation / PHP Server Side Scripting
Forum Library, Charter, Moderators: coopster & jatar k

PHP Server Side Scripting Forum

    
Signing a doc on line
Anyone has done it?
henry0




msg:3046783
 11:17 am on Aug 15, 2006 (gmt 0)

A new client needs to offer a bunch of docs online and possibly to have a user signing those doc or docs (In a multitude of languages, but it should not matter?)

I have no idea on how it works and how to implement it, from a form or from a PDF?

I will more than gladly accept any guidance :)
Thanks

 

jatar_k




msg:3047208
 5:02 pm on Aug 15, 2006 (gmt 0)

If you need them to actually sign it then wouldn't you just give them a pdf they could download? Then have them sign it and fax it in.

henry0




msg:3047267
 5:27 pm on Aug 15, 2006 (gmt 0)

Unfortunately it is a client's requirement

Their line of biz is in Health care and related services (Large Co) they need it to implement a new service to be ordered by people that obviously do have a computer but no Fax or do not know how using a PC fax. Many users are somehow "Computer Deficient".
Plus in this case time will be the essence.

I already checked with my attorney and now electronic signature is fully legal.

MattyMoose




msg:3047769
 10:44 pm on Aug 15, 2006 (gmt 0)

What you need in this case is a "Digital Signature Infrastructure", or AKA "PKI", etc etc.

To be fully compliant with proper digital signature usage you really need policies in place to manage the signatures in question. The general process goes like this (this is a process I've gone through before):

* Create a CA (Certificate Authority)
* Make everyone trust you as a CA / install your CA certificate as trusted
* Assign Digital Certificates to users
* Train users on the use of their certificates
* Manage certificates (renewals, revokations, etc)

Typically the hardest parts of digital signatures are Training users and managing certificates.

I've found that typically people won't use it unless they are absolutely required to use it, and the whole company/organization is behind this setup, and EVERYONE uses it when they're supposed to.

From a technical perspective, it's easy to setup, but the interfaces and management can be a real pain.

I'd recommend you actually play with it yourself, create your own CA, make a certificate for yourself (preferably two or more), and sign emails or documents using this cert, and see what sort of things you can expect from users.

To answer your question though, I'm not sure how you would digitally sign a "document" that is on a website without first downloading it locally, which may contravene the policies in place, especially if you're in a health care environment.

HTH!

[edited by: MattyMoose at 10:47 pm (utc) on Aug. 15, 2006]

henry0




msg:3048352
 10:59 am on Aug 16, 2006 (gmt 0)

Thanks a lot MattyMoose,
Lots of good info, I now understand the road map concept.

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / Code, Content, and Presentation / PHP Server Side Scripting
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved