Paperless ekyc system
Contact

eSign

eSign Authentication

eSign service allows applications to replace manual paper-based signatures by integrating an API which allows an Aadhaar holder to electronically sign a form/document anytime, anywhere, and on any device legally in India.

eSign service facilitates significant reduction in paper handling costs, improves efficiency, and offers convenience to customers

The eSign service is governed by e-authentication guidelines. While authentication of the signer is carried out using Aadhaar e-KYC services, the signature on the document is carried out on a backend server of the e-Sign provider. eSign services are facilitated by trusted third party service providers - currently Certifying Authorities (CA) licensed under the IT Act. To enhance security and prevent misuse, Aadhaar holders private keys are created on Hardware Security Module (HSM) and destroyed immediately after one-time use.

eSign Electronic Signature is a new and innovative way to sign any document electronically without going through the hassle of signing a document physically or with a dongle based digital signature. eSign service allows any Aadhaar holder to digitally sign any document without having to obtain a physical digital signature.

As eSign is covered under the second schedule of the Information Technology Act, any document signed using eSign is legally as valid as a physically signed document or a document signed using conventional digital signature. Any organization can get signature based on eSign, on any documents generated from any of its applications, by integrating with the eSign Service Provider (ESP). eSign Online electronic signature service offers a mechanism to any organization to replace manual paper-based signatures by integrating eSign service with their software applications.

Now, with eSign, you can do away with printed paper application forms and allow your user to eSign the document within a few seconds which is legally as valid as a physically signed document.

Features of eSign

  • Easy and secure way to digitally sign document anywhere, anytime
  • Facilitates legally valid signatures
  • Flexible and easy to implement
  • Privacy of the signer is maintained
  • Secure online service is used
  • Immediate destruction of keys after usage

Benefits of eSign

  • Promotes paperless environment
  • No hassels of key storage and key protection concerns
  • User Convenience
  • Integrity with complete Audit trail
  • Saves cost and time

We are an empanelled eSign Service Provider (ESP) who can enable any organization with eSign facility

eKYC Process

eSign - How it works ASP sends the request xml for electronic signature with the required inputs and obtains the response from eSign Service.

eSign Gateway Model

eSign Authentication Api

In this scenario :

  • ASP client application asks eSign user to sign the document
  • ASP client application creates the document hash (to be signed) on the client side
  • ASP client application has / asks-for e-KYC identification Number
  • ASP client application asks the eSign user to provide consent for certificate generation and signature
  • ASP forms the input data for eSign API
  • ASP redirect to ESP application by submitting request XML
    • ESP validates the calling application and the input.
    • ESP verifies the Digital signature of ASP for eSign XML received
    • ESP logs the transaction
    • ESP redirects eSign user to e- authentication page
    • ESP performs authentication and get e-KYC information from e-KYC provider
    • ESP show the document hash along with document information to eSign user.
    • ESP creates a new key pair and CSR for eSign user.
    • ESP calls the CA service and gets a Digital Signature Certificate for eSign user. The certificate will be a e-KYC class Digital Signature Certificate, which has e-KYC number, Name of the eSign user, e-KYC response code, Authentication Type, and Time Stamp embedded.
    • ESP signs the 'document hash' and provides response XML to the ASP by redirecting to ASP's response URL.
  • ASP receives the document signature and the eSign user's Digital Signature Certificate.
  • ASP client application attaches the signature to the document.
  • eSign user can accept or reject the signature and DSC