Loading...
Loading...
Primarily, they verify both the sender’s identity and the integrity of the message, safeguarding it from alteration after transmission. However, the security offered by these signatures varies, leading to a classification of three main types.
Note: It is important to note that the types listed below are the most commonly recognised under the European Union’s Electronic Identification, Authentication and Trust Services (eIDAS) regulation, which aims to streamline and secure electronic transactions within EU member states. These signature types are also widely adopted across Arab countries.
The Simple Electronic Signature (SES) represents the most basic form of electronic authentication, offering minimal security while being straightforward to implement. Essentially, it functions as a digital mark, such as a symbol or image, that is associated with the signer to authorise a particular electronic transaction. However, its simplicity leaves it vulnerable, as it does not include robust mechanisms to verify the signer’s identity and confirm the legitimacy of the signature.
A common example of SES usage might involve appending a name to an email or digital message, requiring the input of a password, or submitting a scanned image of a manually-signed document.
Advanced Electronic Signature (AES), often referred to as "digital signature," offers a stronger security layer than Standard Electronic Signatures (SES). They validate the signer's identity through rigorous authentication and use advanced encryption to safeguard data integrity, flagging any post-signature modifications.
In the UAE, the Federal Authority for Identity, Citizenship, Customs and Port Security exemplifies AES use through its digital signing and timestamping services for online transactions. These services enable both institutions and individuals to apply secure, encrypted electronic signatures to documents, financial transactions, and crucial digital communications via ID cards.
Moreover, AES incorporates a time-stamped encrypted seal that precisely records the signature's date and time. This immutable seal strengthens the process's credibility by preventing any unauthorised changes, even from the signer themselves.
Among the most secure forms of authentication, the Qualified Electronic Signature (QES) is issued by trusted authorities, such as the government, using specialised devices. Its issuance involves obtaining a digital certificate to ensure top-tier security and verification.
Legally, QES holds the same standing as a handwritten signature, though regulations vary by country. It is frequently used in contracts, including sales, leases, and employment agreements. QES also facilitates electronic commerce, online banking, and administrative processes like tax filings and birth certificate applications.
In many Arab countries, including the UAE, QES is legally recognised under the Electronic Transactions and Trust Services law, which governs the creation, storage, and validation of electronic signatures. Obtaining a QES requires a digital authentication certificate from an accredited trust service provider designated by the Telecommunications and Digital Government Regulatory Authority.
Selecting the right type of electronic signature depends largely on individual needs and preferences. In most cases, SES is the preferred choice for signing informal or non-sensitive electronic documents. While it lacks strong security features, it is both free and user-friendly.
AES, on the other hand, provides enhanced security, making it suitable for sensitive transactions, such as financial dealings. However, it often requires specific procedures for issuance or the use of specialised, usually paid, software.
For official transactions that require legal validation, QES is the standard. This option offers the highest level of security and authenticity, relying on a digital certificate issued by an accredited authority.
References
[1] u.ae, التوقيع الإلكتروني وشهادات المصادقة الإلكترونية
[2] u.ae, قانون المعاملات الإلكترونية وخدمات الثقة
[3] ec.europa.eu, What is eSignature
[4] sectigo.com, What Are the Different Types of E-Signatures? Use Cases, Examples & More
For an optimal experience, please
rotate your device to portrait mode.
