Signature Capture Options

  • Thread starter Thread starter Ciaran
  • Start date Start date
C

Ciaran

Hi All,

I'm building an app. that has some signature capture requirements.
I need to be able to capture the signature on the PPC, sync. with
a server, and view the signature on the server. I've been looking
at ways to do this and I'd like to clarify the following:

From a legal perspective what is the best way to store a signature,
so that it will hold up in a court of law? e.g. should I save as
coordinates or as a graphic format?

Thanks for the assistance,
Ciaran
 
I'm not a lawyer, but from the court's standpoint, it doesn't matter.
Electronic signature law covers encryption and hashing and such, but is not
specific about the technology used to validate the user. That being said,
you should mark the timestamp, collect a password/pin, and a hash of the
document at signing time, as well as the signature. Depending on your
field, digital handwritten signatures may help with auditors or resolving
issues outside of court.

The best biometric signature capture devices collect all vector points, pen
lifts, and a timestamp of each point. This allows you to calculate the
speed of each stroke, which should help validate the signature if ever
needed. Let the server decode it into a graphic for display. I capture
each point, each pen up and down, and the time differential for each point.
I don't do any biometric analysis on it though.

There is a good signature capture example on Microsoft's site that has a
nice control in it. Just strip all of the extra stuff out of it. I used
this as a basis of a control I built and it works great.

-Dave
 
Using the fingerprint should be limited to the User's identification or
authentication on the signing event only.

The important here is to assure that the document be stored and kept in
a way that it can be kept genuine ! At this point you might consider
Certificates.

A model that I would suggest:

Using fingerprint recognition does add validity to the signature action.
You would most likely consider the signing event as being well accounted
for when using a fingerprint scanner.

Second, I would store or convert the signed document in a PDF format.
At this moment you could consider the document as being well signed. as
for the fingerprint image itself, I do not see any value in placing it
in the document.

Adding a certificate to the PDF could then make the document more
authentic !



Marc Potvin
Product Manager
Biometrics Direct
 
Back
Top