Evrotrust’s remote qualified electronic signature provides a much greater level of security than standard electronic signatures created on smart cards.
The electronic signature is made through cryptographic cyphering and deciphering algorithms via the use of cryptographic keys. With the smart card electronic signatures, the personal key used to create the signature is stored on an additional device, which requires users to have certain skills, to install drivers and to use a specific computer.
The patent pending technology developed by Evrotrust makes it possible for the personal key to be stored on a remote cloud-based hardware cryptomodule (HSM) with the highest level of security, and not on the smart device itself. Because of this, losing your phone does not pose a threat to the security of your electronic signature and it doesn’t matter how many different devices you will use to sign electronically. Your smart device is only a connection to the “environment” where your secret key is stored.
To create the signature, you use something you have (your smart device and the personal key stored in the “safe”) and something you know (your PIN code). Every time you access the application and you sign a document you’ll be required to enter a PIN code or another type of biometry available on your phone (fingerprint, face recognition, iris biometry, voice recognition etc.), and a confirmation notification is sent after every signature.
As Evrotrust’s qualified electronic signature is issued remotely, in a system which neither the user nor the service provider has access to, and due to the fact that for each signing there are two channels used – the system is practically immune to hacker attacks.
In addition to this, Evrotrust’s activity and its employees are insured at a high level by a leading European insurance company against all risks of professional negligence.