KuppingerCole Report
Executive View
By Anne Bailey


Digidentity's eSGN solution enables Advanced and Qualified Electronic Signatures (AES/QES) without the use of external tokens, like smart cards. It has established a secure method of using the signer's mobile device to verify their identity and to sign documents electronically in an all-digital flow.
By Anne Bailey

1 Introduction

Establishing digital trust has been challenging enough, but the unambiguous rise in remote interactions -- distanced onboarding of customers and employees, exchanging contracts, and cross-border transactions -- has made electronic signing a necessity of doing business today. No sacrifices can be made for security, which means that in order to fulfill the stringent requirements of eIDAS and other regulations for electronic signatures, solutions are often multi-step and multi-channel that take time and disrupt the user experience. However, solutions are on the market that consolidate identity verification and ability to provide qualified electronic signatures into a self-service digital flow.

The eIDAS Regulation, which came into full force in 2016, stipulates the requirements for electronic identification and trust services within the European Union. Vendors that issue advanced or qualified electronic signatures (AES/QES) must fulfill particular technology requirements. For AES, the signatory must be uniquely identified and linked to their electronic signature, the signatory must have sole control of their private key, and the electronic signature should signal if the document has been tampered by becoming invalid. A QES has the highest level of assurance according to eIDAS, and has the same legal standing as a signature made by hand on a physical document. A QES is an AES with more safeguards in place, such as requiring that the electronic signature use a digital certificate that is stored on a qualified signature creation device (QSCD) . Qualified trust service providers, vetted and publicly listed on the EU Trust List, are the only vendors that may issue a qualified electronic certificate.

Electronic signatures, despite their strict requirements, fulfill many needs in today's world of digital and remote interactions. Particularly in the European Union or with countries that often collaborate with EU member states, electronically-signed documents must have legal standing that is recognized across borders, even with multiple signatories stand in different countries. And especially if the signatories are in different countries, it becomes necessary to handle a document signing process remotely, as the time of sending the document multiple times to both parties, or the monetary and time costs of travelling to sign the document in the same room are not aligned with modern business practices. But regardless of distance, parties to a contract need fully digital methods to sign documents securely. Electronic signatures are capable of verifying and displaying the authenticity of the sender and the signer, display the integrity of the document, and facilitate digital workflows.

eIDAS' dual goals -- of enabling electronic transactions and signatures across the EU, and upholding the highest levels of assurance that the identities of transacting parties and their signatures are valid -- pose challenges to rolling out user-friendly solutions. Signatories are often required to carry a physical security token like a smart card, have access to dedicated smart card readers, use video identification products, or wait hours or days to complete the initial identity proofing required before they may proceed with signing. While electronic signing solutions exist, there is often a delay between registration and the ability to sign a document -- something that puts unnecessary delays on business processes.

However, technology solutions are on the market that fulfill the highest levels of assurance for electronic signatures while consolidating the process into a single digital flow. By combining remote identity verification with a virtual smart card, signatories to a document can complete the necessary steps on their mobile device themselves and immediately sign a document. Digidentity's eSGN onboarding uses remote identity verification and a virtual smart card to facilitate advanced and qualified electronic signatures in an all-digital workflow.

2 Product Description

Digidentity was founded in 2008 and is based in The Hague, the Netherlands. It is a qualified trust service provider. Customers implement eSGN for rem ...

Login Get full Access

2.1 Technological Approach

Identity verification occurs by using the embedded chip in passports and other identity documents as an authoritative source against which to create a ...

Login Get full Access

2.2 Product Description

When the customer has implemented eSGN, an end user must register by downloading an app on their smart device. The user onboards using an email addres ...

Login Get full Access

3 Strengths and Challenges

Overall, eSGN is a strong electronic signature product that combines the highest assurance level with an all-digital flow. It achieves global coverage ...

Login Get full Access


©2021 KuppingerCole Analysts AG all rights reserved. Reproduction and distribution of this publication in any form is forbidden unless prior written permission. All conclusions, recommendations and predictions in this document represent KuppingerCole´s initial view. Through gathering more information and performing deep analysis, positions presented in this document will be subject to refinements or even major changes. KuppingerCole disclaim all warranties as to the completeness, accuracy and/or adequacy of this information. Even if KuppingerCole research documents may discuss legal issues related to information security and technology, KuppingerCole do not provide any legal services or advice and its publications shall not be used as such. KuppingerCole shall have no liability for errors or inadequacies in the information contained in this document. Any opinion expressed may be subject to change without notice. All product and company names are trademarks™ or registered® trademarks of their respective holders. Use of them does not imply any affiliation with or endorsement by them.

KuppingerCole Analysts support IT professionals with outstanding expertise in defining IT strategies and in relevant decision-making processes. As a leading analyst ompany, KuppingerCole provides first-hand vendor-neutral information. Our services allow you to feel comfortable and secure in taking decisions essential to your business.

KuppingerCole, founded in 2004, is a global, independent analyst organization headquartered in Europe. We specialize in providing vendor-neutral advice, expertise, thought leadership, and practical relevance in Cybersecurity, Digital Identity & IAM (Identity and Access Management), Cloud Risk and Security, and Artificial Intelligence, as well as for all technologies fostering Digital Transformation. We support companies, corporate users, integrators and software manufacturers in meeting both tactical and strategic challenges and make better decisions for the success of their business. Maintaining a balance between immediate implementation and long-term viability is at the heart of our philosophy.

For further information, please contact clients@kuppingercole.com.