ESign (India)
eSign is an online electronic signature service in India to facilitate an Aadhaar holder to digitally sign a document.[1] The signature service is facilitated by authenticating the Aadhar holder via the Aadhar-based e-KYC (electronic Know Your Customer) service.[2]
To eSign a document, one has to have an Aadhaar card and a mobile number registered with Aadhaar. With these two things, an Indian citizen can sign a document remotely without being physically present.
Procedure
The notification[2] issued by Government of India in this regard stipulates the following procedure for the e-authentication using Aadhaar e-KYC services.
Authentication of an electronic record by e-authentication technique which shall be done by -
- the applicable use of e-authentication, hash function, and asymmetric cryptosystem techniques, leading to issuance of digital signature certificate by Certifying Authority,
- a trusted third party service by subscriber's key pair generation, storing of the key pairs on hardware security module and creation of digital signature provided that the trusted third party shall be offered by the certifying authority (the trusted third party shall send application form and certificate signing request to the Certifying Authority for issuing a digital signature certificate to the subscriber),
- issuance of digital signature certificate by Certifying Authority shall be based on e-authentication, particulars given in the prescribed format, digitally signed verified information from Aadhaar e-KYC services and electronic consent of digital signature certificate applicant,
- the manner and requirements for e-authentication shall be as issued by the Controller from time to time,
- the security procedure for creating the subscriber’s key pair shall be in accordance with the e-authentication guidelines issued by the Controller,
- the standards referred to in rule 6 of the Information Technology (Certifying Authorities) Rules, 2000 shall be complied with, in so far as they relate to the certification function of public key of Digital Signature Certificate applicant, and
- the manner in which information is authenticated by means of digital signature shall comply with the standards specified in rule 6 of the Information Technology (Certifying Authorities) Rules, 2000 in so far as they relate to the creation, storage and transmission of Digital Signature.
Service providers
Controller of Certifying Authorities (CCA) empanel the qualified agencies to operate as eSign Service Provider. The list of such empaneled service providers is listed at Website of CCA. Application Service Providers can reach to any of the eSign Service Provider to avail the service.[3]
Empanelled providers :
- (n)Code Solutions[4] http://esign.ncode.in
- eMudhra Limited[5]
See also
References
- ↑ "eSign – Online Digital Signature Service". Controller of Certifying Authorities, Govt. of India. Retrieved 31 May 2015.
- 1 2 "MINISTRY OF COMMUNICATIONS AND INFORMATION TECHNOLOGY (Department of Electronics and Information Technology) NOTIFICATION" (PDF). The Gazette of India (Extraordinary). No. 59 (PART II—Section 3—Sub-section (i)). 28 January 2015. Retrieved 31 May 2015.
- ↑ "Empanelled eSign Service Providers". Controller of Certifying Authorities, Govt. of India.
- ↑ "(n)Code Solutions eSign Service". (n)Code Solutions.
- ↑ "eMudhra eSign Service". eMudhra Limited.