It is not possible for the signature to be misused in the case of signotec products for signing PDF documents. This is thanks to the biometrics or the dynamic features of the signature. Where signatures are used, the image of the signature is inserted into the document, but this only serves as an optical endorsement. The unique, individual characteristics of the signer’s handwriting are also stored in the document. If an attempt is made to manipulate the signature, the image of the signature can be easily cut and copied, but the biometrics cannot. The biometrics are an essential component of the signature and are stored in the document in a highly encrypted manner. The document and the biometrics are inextricably linked, which means that any manipulation of the document itself or the signature can be reliably detected.

Therefore, two things have to be reliably protected:

• The document and
• the signature

The document must be protected against manipulation and the signature against (identity) theft. If only the image of the signature were to be captured, it would not be possible to reliably prevent the signature from being misused and there would be no legal or evidential security. signotec does not use any proprietary or manufacturer-specific format to create the electronic signature. In fact, signotec complies with the global Adobe PDF-ISO standard. Electronic documents signed using signotec can be checked at any time, anywhere and by anyone without technical input. For example, Adobe Reader can be used to check whether a document has been manipulated.

signotec only uses encryption and hash algorithms that have been classified as secure by the German Federal Network Agency. This list is available in the download section. The mechanisms currently used include Blowfish 448, AES 256, RSA 2048 and SHA 256.

The signotec technology has also been tested by TÜV, the testing and certification organisation. signotec software and hardware complies with the TÜV ‘tested software’ specifications. After conducting a battery of tests during the TÜV inspection, no data could be injected into the transmission paths. Tampering with signed PDF files was picked up immediately and signalled clearly and explicitly.  As stated in the test report: “The hardware and software function as a closed system. No security gaps were detected by the tester during testing. The tester was unable to find any obvious saved, unencrypted raw data during the test period.”

To ensure that the signature cannot be tapped into during capture via the signature pad, data transfer between the pad and PC is safeguarded in the case of the signotec Sigma and Omega pads. There are major differences in the driver technologies used here. We strongly urge customers not to use simple Wintab drivers or unencrypted data transfers.

Technical documentation can be provided once a non-disclosure agreement has been concluded.

Firstly, it should be noted that Citrix or the terminal server does not have the option to directly access native USB devices on the fat or thin client. Despite this, we offer a perfect solution to allow the signotec pads to be operated in such an environment:

• The Sigma or Omega pad with an external USB/Ethernet adapter. In the case you can access the pads via TCP/IP. The signature pads will be not connected to a PC or Thin-Client! You can access the signature pad from different PCs.  
  
• The Sigma or Omega pad with an internal USB-to-serial converter. These devices can be connected to the thin client by USB. A virtual COM port is generated on the client, which is addressed as described: In the case of COM Port Mapping, the serial connection of the client (thin client or fat client) can be transparently switched to the terminal server. The drivers for the internal converter, for example, are part of the Linux operating system from kernel 2.4.20. The Windows drivers are Microsoft WHQL certified. You can download the drivers here. You will also find further information there.

The signotec signature pads with an internal USB-Serial-Converter ends with an FT like ST-BE105-2-FT100. More details you will find in the data sheets.

Precise instructions in English are available here for Citrix, Terminalserver and Remote Desktop.

Providing consulting services is a priority for us and we always seek direct dialogue with the customer. Together with you, we want to find the best possible solution in relation to hardware and software. We compete on the market not in terms of price, but in terms of the quality of our consulting and support services, and of course in relation to hardware and software. Comparing prices is like comparing apples and oranges. We want to avoid this.

Software manuals are copied to the target computer during the installation and are accessible via the Start menu. Operating instructions in relation to the hardware are enclosed in paper form. The document can also be sent by e-mail.

There are two options to enable logging in SignoSign:

- Editing the ‘SignoSign.ini’ file in the SignoSign installation directory

[Logging]
WriteLog=1
LogLevel=2

- SignoSign option ‘Generate log file’

'Toolbars' -->; 'Menu'; Generate log file must be disabled via the SignoSign configuration to ensure that this entry can be selected or enabled.

The 'SignoSign_YYYY-MM-DD.log' log files are saved under SignoSign Program DirectoryLog.

The content of the current log file can also be opened in SignoSign via 'Options' -->; 'Display current log file'.

The Omega and Sigma pads contain a service menu. This can be used to configure two device properties:

- The intensity of the backlight (Omega and BL-Sigma)
- The calibration of the sensor

The following FAQ will provide details on how you can access and use the individual menus.

The intensity of the backlight on the Omega pad and the Sigma pad can be adjusted.

In the case of the Omega, there are two levels of brightness (Medium/Maximum). In the case of the Sigma, there are 17 levels of brightness (Off – Maximum).

The backlight is basically supported in the latest components of the signoPAD API, but can only be switched between Off and Maximum. The intensity of the backlight can be easily adjusted using the integrated service menu.

The ‘Brightness’ service menu is activated by moving the pen over the upper right area of the sensor while the device is being inserted into the USB port.

The service menu is available from firmware 1.12 (Omega) or 1.10 (Sigma) and, of course, only in Sigma devices with the backlight function. These can be identified by the product number ST-BL. See data sheet.

The sensor in Sigma and Omega pads can be calibrated. This may be necessary if the signature is not displayed precisely below the tip of the pen. We provide software for this purpose, please contact the signotec support team.

However, it is easier to do this using the integrated service menu.

The ‘Calibration’ service menu is activated by moving the pen over the upper left area of the sensor while the device is being inserted into the USB port. Two crosses appear one after another and must be touched accurately using the pen.

The service menu is available from firmware 1.12 (Omega) or 1.10 (Sigma).

With the update of Windows 8.1 Problems reported that the signotec HID pads turn off after connecting to the computer after a few seconds.

The cause lies in the fact that with Windows 8.1, a new power management was introduced.

Devices equipped with a power saving function, such as our HID pads, thereby inadvertently placed in standby.

Microsoft has published the following proposed solution:

http://support.microsoft.com/kb/2900614/en

Please see the following IDs for the signotec Pads:

Sigma HID:
idVendor: 0x2133
idProduct: 0x0001

Omega HID:
idVendor: 0x2133
idProduct: 0x000B