top of page
Writer's pictureAkshay Raj

how to use aadhaar based esignature on your document

 digital signatures have been in existence in india since 2000. however, their format made them inaccessible to a majority of the indian population. the introduction of aadhaar esign transformed the landscape of digital signatures. now, individuals can sign documents electronically with a valid aadhaar number and a linked phone or email id.


introduction


aadhaar esign revolutionized the process of digitally signing documents in india using an aadhaar card. the use of aadhaar-based esignatures on documents carries the same legal and evidentiary weight as handwritten signatures.


previously, electronic signing in india was limited to usb-token based digital signatures, also known as digital signature certificate tokens or dsc tokens. 


these digital signatures have been in existence in india since 2000. however, their format made them inaccessible to a majority of the indian population. the introduction of aadhaar esign transformed the landscape of digital signatures. now, individuals can sign documents electronically with a valid aadhaar number and a linked phone or email id. the simplicity of using aadhaar esign has made it accessible to a wide range of indians. despite its user-friendly approach, aadhaar esign maintains the security and enforcement advantages of standard digital signatures.


how secure is aadhaar esign?


according to section 3a and schedule 2 of the information technology act, using an aadhaar esign in india for electronic document signing is both legally valid and highly secure. aadhaar esign can be applied to most documents, except for negotiable instruments (excluding cheques), powers-of-attorney, documents involved in establishing trusts, as well as wills and other testamentary depositions.


why aadhaar esign is groundbreaking?


1. no need for acquisition: there is no need to go through a complicated process of "ordering" or acquiring anything. anyone with an aadhaar number and a linked phone/email can use aadhaar esign.

2. user-friendly esigning: it is effortless to esign using aadhaar. basic knowledge of using a phone and entering otps is all that is required.

3. no physical device required: aadhaar esign is a remote and device-less method. as long as individuals have their phones with them, they can esign from anywhere.

4. mobile compatibility: since most indians access the internet through mobile devices, aadhaar esign is well-suited to the digital habits of the general population in india.

5. highly scalable for over 1 billion citizens: this approach has immense scalability potential and could potentially revolutionize the execution of paperwork in india.


working of an aadhar esign: explained


step 1: signatories access the document, give consent, and click on a signing link provided by an application service provider (asp) on a user interface. during this stage, the asp also performs a hashing function on the document to generate its hash result (known as the input document hash).


step 2: once the signers click the signing link, they are directed to a portal maintained by the esign service provider (esp). here, the signer enters their aadhaar number. the esp requests the unique identification authority of india (uidai) to perform an electronic know your customer (ekyc) process with the signer. uidai sends a one-time password (otp) to the signer's registered mobile number or email address. the signer enters the otp on the portal. if the otp is correct, uidai verifies the signer's identity authentication as successful.


step 3: after successfully authenticating the signer's identity, the esp generates a secure key pair for the signer.


step 4: once the key pair is generated, the esp sends the signer's public key and the ekyc information (received from uidai) to the certifying authority (ca) following the format specified by the controller of certifying authorities (cca) under the esign application programming interface (api) specifications. upon receiving these details, the ca issues the electronic signature certificate for the signer and forwards it to the esp.


step 5: the esp encrypts the input document hash (provided by the asp in step 1) using the signer's private key to create an encrypted hash result. subsequently, the esp transfers the electronic signature certificate and the encrypted hash result to the asp, which facilitates the placement of the esign onto the document.


and with that, the aadhaar esign process is successfully completed.


how esign has been made safe and secured?


in order to ensure the safety and reliability of esign services, certain measures are implemented. first and foremost, authentication is carried out using aadhaar ekyc services, which require individuals to verify their identity.


once an individual's identity is successfully authenticated through methods such as biometric or otp verification, esign facilitates the generation of key pairs, certification of the public key, and the application of a digital signature on the electronic document. all of these processes are seamlessly conducted through a single online service.


the private key pair, used for the digital signature, is employed only once and is then promptly deleted after a one-time use. this practice helps enhance security and prevent unauthorized access.


the digital signature certificate produced through esign remains valid for a duration of 30 minutes and subsequently expires. this expiration feature is in place to maintain the overall security of the system.


when a document is signed using esign, it is embedded with a legitimate electronic signature (esign) that can be easily verified using standard verification methods.


to utilize esign integration with a pin, a gateway manages the pin function, while an asp (application service provider) can directly integrate with esign.


it is important to note that in this particular integration, the optional pin feature will not be available, limiting the authentication options to biometric verification and otp (one-time password) verification.


conclusion


the use of aadhaar-based services has witnessed a significant rise since the demonetization in november 2016, making it the world's most extensive biometric identification system with 1.3 billion aadhaar cards generated to date. traditional document signing processes are often time-consuming, require physical presence, and come with security and logistical challenges. however, the introduction of aadhaar-based esignature has revolutionized this process by offering remote access, eliminating paperwork and long queues, and reducing carbon footprint. businesses can now save valuable resources such as time, capital, and workforce management while operating in an eco-friendly digital environment with high process efficiency. through curated esignature tools provided by software companies, organizations and individuals can now efficiently execute legally binding documents using esign aadhaar.


7 views0 comments

Kommentare


bottom of page