Sole Control Assurance Level (SCAL#1)
The signing keys are used securely, ensuring that only the authorized signer can use them. This is enforced through the signature activation module, which uses signature activation data provided by the signer via a secure protocol. This ensures that only the signer's key can be used to sign specific documents.
SCAL#1 focuses on protecting the signature activation data's integrity and confidentiality. The signature activation module operates in a secure environment, preventing unauthorized access and tampering. The data is securely transferred from the signer's device to the server, ensuring the signer's keys remain protected even if the Trusted Service Provider's (TSP) server is compromised.
To enhance security, signers can authenticate using methods such as PIN, SMS, or TOTP (Time-Based One-Time Password). Compliance with SCAL#1 is crucial for ThrivoSign Remote Signing Solution to meet high security standards. By adhering to SCAL#1, we ensure strong access controls, authentication protocols, and data protection mechanisms, enhancing the security of digital signatures and building trust with users and regulatory bodies.
Last updated