New ETSI standard for cloud-based digital signatures

IT standards body, European Telecommunications Standards Institute (ETSI), has published a new open standard that will bring cloud-based digital signatures to any mobile device and web application.

The new standard, ETSI TS 119 432, includes a significant contribution developed by the Adobe-led industry group, Cloud Signature Consortium (CSC). CSC is a group of industry leaders and academic organisations committed to building an open standard for cloud-based digital signatures for web and mobile.

ETSI said the new standard is about choice. It allows digital signature solutions to work with digital certificates hosted and managed in the cloud by any Trust Service Provider that adopts the standard. When a business process – such as a consumer applying for a new loan, or a researcher gathering data as part of a clinical trial – requires reliable signer identity and authenticity, business users are no longer threatened by complex hardware setup or locked into proprietary technologies. Instead, they can choose the provider that best meets the needs of their sector or jurisdiction.

Enterprises today are competing to create the best, most secure digital experiences for their customers, their employees, and their partners. That includes having access to fully mobile cloud signatures on any device, regardless of the country or industry they work in, to drive end-to-end digital business. ETSI said this new standard will be critical to furthering the digital transformation of business on a global scale by giving everyone access to secure digital signature services across a full range of applications and devices.

“This is an important step forward for security in deploying digital signatures which takes into account the move to cloud-based services and mobile devices,” said Nick Pope, ETSI TC ESI vice chair.

“These standards enable a new way of implementing trust services which greatly simplifies their use and provides an important toolset to counter growing internet fraud targeting online business and government.”