Posted on 2006-06-26
Could someone please help or explain what would be the best way to go about this.
I have excel documents that need to be signed for buy-off/approval. These documents then get scanned and put into a document management system. I would like to be able to create pdfs of these and use digital signatures. If I save on a server (internal) digital signature of all the individuals that need to sign these could they then at the time of buy-off use their digital signature for approval. Yes. Then If I receive a doc with someone else's sig on it, how do I verify that it is actually their's? I could create and import all the signatures from that server for validation. But what's to stop someone from pretending to be me and creating my signature?
The other problem is, these users do not have internet access. That would probably make it hard to go through verisign or geotrust right? Unless they can give me a certificate to put on our server.
Bottom line is, I don't really know what I'm doing here and need help...