Simplifying Electronic Document Digital Signatures
share
Electronic documents are typically signed using private keys and the matching digital certificate through a Public Key Infrastructure (PKI). Private keys must be kept in a safe place so they can be used multiple times. This makes private key management a critical component of PKI for which there is no foolproof answer. Existing solutions are often expensive and cumbersome. This work proposes issuing an irrevocable digital certificate for each new document to be signed. We demonstrate that an ephemeral key can be used with these certificates, eliminating the need to store private keys. We analyze the overhead caused by the requirement to generate new key pairs for each document, provide a security overview and show the advantages over the traditional model.
READ FULL TEXT
