Go back to previous topic | Forum name | General Discussion | Topic subject | OKP Legal : E-Signatures (ie. Preview in OS) legal? | Topic URL | http://board.okayplayer.com/okp.php?az=show_topic&forum=4&topic_id=12734257 |
12734257, OKP Legal : E-Signatures (ie. Preview in OS) legal? Posted by Heinz, Mon Feb-23-15 06:15 PM
Not sure if anyone has used Preview's signature feature to sign documents but I was wondering if this process of signing documents with OS Preview is legally binding?
____
TWITTER : Heinz21st
IG : H_N_Z
|
12734298, This is a better question for google Posted by Buddy_Gilapagos, Mon Feb-23-15 07:07 PM
https://www.docusign.com/electronic-signature-legality
********** "Everyone has a plan until you punch them in the face. Then they don't have a plan anymore." (c) Mike Tyson
"One of the most important things in life is what Judge Learned Hand described as 'that ever-gnawing inner doubt as to whether you're r
|
12734307, lol Posted by howisya, Mon Feb-23-15 07:26 PM
to the OP, i use digital signatures in my line of work, they are legal
|
12734371, I looked but I didnt find much specifically with Mac OS Preview Posted by Heinz, Mon Feb-23-15 10:03 PM
I've mostly seen articles about certain programs
____
TWITTER : Heinz21st
IG : H_N_Z
|
12734443, You probably won't find something specific to Preview but you Posted by Buddy_Gilapagos, Tue Feb-24-15 07:37 AM
should find that e-signatures in general are legal. I am not sure why Apple would build a e-signature solution that didn't pass legal muster.
********** "Everyone has a plan until you punch them in the face. Then they don't have a plan anymore." (c) Mike Tyson
"One of the most important things in life is what Judge Learned Hand described as 'that ever-gnawing inner doubt as to whether you're r
|
12734436, It's all about trust and non-repudiation Posted by nonaime, Tue Feb-24-15 04:37 AM
If you create a self-signed cert/pub key and use the corresponding private to sign documents, there's no reason to trust that a document signed that way really came from you. If you get others to sign your key, well now *they* can trust stuff that you sign. Doesn't mean that anyone else has to. If you get a have a centralized infrastructure with CAs and the like, then the people that trust that CA can trust the stuff it signs. But if your job gets a cert signed by, Thawte for example, and then use that cert to sign other stuff...well, I can trust Thawte signed stuff...but I don't have trust stuff signed by your job's Thawte signed cert.
It can be a flimsy trust. For one, how are these various entities vetting your identity before signing your pub key? Secondly (and this is big), how do I know that you didn't do something silly like publish your private key to the webs? You have two keys, a private and a public. You publish the public, keep the private. Losing your private key is a game over scenario, and if you don't (or can't) revoke your key...woe onto anyone who trusts any new dcommunications signed by that key. Remember Heartbleed? That was for SSL, but same concept applies regarding trust.
I would think those two reasons alone would make for legal headaches...I'm not saying that you can't legally be held responsible. If people can be convinced that a key issued to you went through a vetting process wrt personal identification and that you had sole possession of the keys...then I guess you'd be bound.
| |