How to choose the best digital authentication when signing your document?
From passwords to the use of biometrics, digital authentication works as a verification of the identity of a person who, in a digital environment, wishes to express their desire to access resources or information or to agree with the terms of a document.
In the electronic signature of documents, digital authentication is an essential component not only to validate the identity of the person signing, but also to guarantee the integrity of the signed document, allowing any modification in its content, even if minimal, to be detected.
But how do you choose the best authentication to use in your document signing process? In this article, we will understand some factors that can help with this choice.
What documents can be digitally signed?
Brazilian law provides for the validity and legality of documents signed electronically by means of Provisional Measure No. 2,200-2/2001 and Law No. 14,063/2020. There are also legal provisions and regulations in Law No. 10,406/2002 (Civil Code), Law No. 13,105/2015 (Code of Civil Procedure) and Law No. 14,382/2022 (Electronic System of Public Records Act), in addition to specific regulations depending on the nature of the signed document.
The classification of electronic signatures varies according to the authentication methods used to authenticate the signers of a document:
- In the signature unsophisticated, a simpler form of authenticating the signer is offered, such as through an email or even the IP address and geolocation of the device used at the time of signing.
- In the signature advanced, authentication methods are used that can uniquely identify the signer, such as facial biometrics.
- In the signature qualified, an ICP-Brazil Digital Certificate is used as a method of authenticating the signer.
Except where the law specifies otherwise, the parties are free to choose the methods used to authenticate the signatories of the document.
Thus, it is important to verify that the legislation determines the use of a specific type of electronic signature for certain situations.
Examples: Documents that can be signed with any type of digital signature:
- Corporate acts (ex: articles of association, bylaws, minutes of the meeting, etc.);
- Extrajudicial enforceable securities (ex: bank credit note, general credit securities, contracts for the purchase and sale of movable property, trust sale of movable property, advance receivables agreement, credit assignment agreement);
- Contracts in general (e.g.: provision of services, supply of products and services, rental of movable and immovable property, data processing agreement);
- Private and judicial powers of attorney;
- General employment documents (e.g. employment contract and attachments, termination term, time card, vacation notice).
Situations in which they may be required advanced and/or qualified electronic signatures:
- Acts of transfer and registration of immovable property;
- Private instruments for the purchase and sale of real estate with the character of a public title;
- Registrations and amendments of constituent acts, at the headquarters of the Civil Registration Officer of Legal Entities;
- Registration of minutes of general meetings of legal entities, at the headquarters of the Civil Registration Officer of Legal Entities.
Security Levels
It is important to understand that authentication can be performed based on three distinct requirements: something that is known (a handwritten signature, for example), something that one has (such as an official document) and something that one is (a Facial Biometry, for example). Each method offers an experience to those who use it and a different level of security.
The choice of appropriate authentication may depend on several factors, such as the existence of a legal provision, the level of sensitivity of the document, the particularities of your business, and the convenience for users.
For example, when dealing with highly sensitive documents, such as business contracts, legal documents, and sensitive information, advanced or qualified electronic signatures are often required.
For less sensitive documents, such as internal or less critical documents, the use of simple electronic signatures may be sufficient.
Authentication types
From this, various types of authentication arise. The more basic, the easier they are to execute, while more advanced methods are more complex but provide an extra layer of security.
Some types of authentication can be:
Single Factor Authentication (SFA)
It's the most basic form of authentication, generally based on something the user knows, such as a password or PIN.
Two-Factor Authentication (2FA)
It adds an extra layer of security by requiring two different types of authentication. For example, in addition to a password, the user must provide a code sent to their mobile device.
In Clicksign, for example, the authentication of Token via Email, Whatsapp or SMS fulfills this role, being a temporary 6-digit code that only those who sign the document have access to.
Multifactor Authentication (MFA)
It goes beyond 2FA, combining various authentication methods (something the user knows, something they own, and something that is) to provide even greater security.
At Clicksign, it is possible to combine various types of authentication to further reinforce the security of the document and confirm the identity of the person who signs it. A possible combination would be, for example:
- Official document Like something that is possesses, capturing and recording a photo of the official document of the person signing the contract.
- Handwritten signature Like something that is knows), the drawing of the signature by the signer, resembling the signature made on paper, but on canvas.
- Facial biometry Like something that is is. Biometrics authenticate the signer through a comparison between the face photo and the photo of an official document presented, in addition to a proof of life verification (liveness).
Certificate-based authentication
It uses digital certificates to verify the identity of a user or device. This form of authentication is often used in corporate networks, high-security IT systems, and even electronic signatures.
At Clicksign, it is possible to sign with or without the ICP-Brazil Digital Certificate, and even carry out a hybrid signature (with and without a digital certificate in the same document). This technology works as an electronic identity for those who sign and can be stored on local devices or in the cloud.
Learn more about the authentications used in Clicksign to reinforce document security.
Ease of use and user experience
In addition to thinking about the security of the authentications, it is important to take into account the ease of use of that authentication by users, ensuring that everyone can use it without difficulty.
In the context of digital signatures, for example, simple authentication reduces the effort required for the user to authenticate and further speeds up the signature process.
Also, it is necessary to think about the context in which the subscription will take place. For example, in the case of subscriptions where the signer does not have a camera on the device they are using to sign, it would not make sense to use options such as facial biometrics or dynamic selfie authentication, but methods such as the Token via email or cell phone, and even the PIX.
In the case of authentication with an ICP-Brazil Digital Certificate, it would also be necessary to understand whether or not the signer in question has an active certificate, for example, in order to carry out the authentication process without obstacles.
What authentication should you use for your documents?
As we have seen, several factors can influence the choice of authentication for signing a document, and this may directly depend on the level of security necessary for your business.
It is essential that you assess the specific needs of your business and the sensitivity of the documents in question to define the most effective authentication strategy.
An efficient approach can be the combination of various forms of authentication, further increasing the security of your processes - and you can do just that by digitally signing with Clicksign. Learn more below.
Sign with Clicksign and count on 14 types of authentication
At Clicksign, you can count on authentications of all kinds, from more complex options to simpler options, choosing your preferred method depending on the degree of security required to formalize your document.
The platform also allows you to combine different authentications to collect even more evidence of the identity of those who sign, leaving your signature process personalized with the layers of security that your documents need.
Learn more about Clicksign authentications and start signing safely and quickly. Try for free to Clicksign.