FAQ

To use the Signature Portal some pre-requirements specific for each operational system are required.

a) Drivers' Update

To install the required drives:

https://www.certisign.com.br/atendimento-suporte/downloads

Chose he operational system.
Chose the model of token or readers acquired.
Download and install.
Open the browser again and try access again.

b) Browser

The Portal is compatible with main browsers such as Internet Explorer, Mozilla Firefox and Google Chrome. Mozilla Firefox: An Applet in Java is used to recognize and seek the certificate. Java should be in the 8u92 version or previous. https://www.java.com

Internet Explorer and Google Chrome: A Plugin is used to recognize and seek the certificate: https://get.websignerplugin.com

To access the Signature Portal in the iOS system, the following procedures exist.

Installation of SAC 8.2 SP1 has the following pre-requirements:

• Be logged as administrator user in the operational system.
• No other version of Safenet Authentication Client should be installed, otherwise the installation shall fail. In case of doubts on how to remove or if you do not know if old versions are installed, contact CAS of CertiSign.
• Do not leave any cryptographic token connected to the USB ports during the installation.

Homologated environment:

• MAC OS 10.6.7
• MAC OS 10.7.x
• MAC OS 10.8

Homologated browsers

• Mozilla Firefox 16 (or superior)

Homologated tokens

• eToken PRO (Aladdin 72K JAVA)
• eToken PRO (Aladdin 64K)
• eToken PRO (Aladdin 32K 4.2B)
• Ikey2032
• Ikey4000

Installation
To install the SAFENET just download it using the link http://www.downloadcertisign.com.br/site/midias/tokens/safenet/Macintosh/sac8.2mac.zip unzip and execute installation.

If the browser is Internet Explorer
Click Tools on the Internet Explorer menu bar (if not visible, press the Alt key);
Click Internet options;
Click the General tab;
Click the Delete button in the Browsing History section;
Select all options and, then, click Delete.

If the browser is Firefox
Click Edit on Firefox menu bar;
Click Preferences on the Edit menu;
Expand the Advanced menu by clicking the plus sign;
Click Cache;
Click the Clear cache button;

If the browser is Chrome Chrome
Click the three-lined icon in the upper right corner in your browser toolbar;
Select History;
Click Clear browsing data;
In the dialog box that appears, select the check boxes for the information types that you would like to remove;
Use the menu at the upper section to select the amount of data you would like to delete. Select the start time to delete all;
Click Clear browsing data;

 Cleaning the Java cache 
Visit the Java console in the Windows control panel;
Click the Delete Files button;
Select the 3 options and click OK.

If your token was acquired at CertiSign, we recommend contact with our technical support through our Customer Assistance Service, click here

The CertiSign Subscription Portal is a cloud service platform, where it is possible to upload the document, create a stream of signatures, sign with legal validity and transmit the document.

You can have fully digital, fast and secure processes.

Reduce the time spent on manual tasks by up to 80% and eliminate expenses with:
- Printing and Document storage;
- Authentication in Registry Office;
- Document delivery services – Motoboy

In addition, you can sign documents with legal validity from anywhere in the world, using our SignApp.

Yes, when you register you will receive a bonus of 10 documents for signature. This bonus has a validity of 30 days.

To check the credits made available, click on the "$" button on the upper corner of the page.

The main services are:
- Digital Signature
- Electronic Signature
- Signature Verifier

You can check the details of each service in our blog, clicking here.

Yes, you can create a contact agenda and use it to send documents in a safe manner.

Yes, you can use our SignApp to manage and sign your documents. Just download and log in.

Yes, upon registering, you automatically create a personal account. You may register your company and all the collaborators that will be part of the signature process.

Yes, you can manage several companies within the Portal.

Yes, you may export reports of documents signed by you and of documents that you have sent to others.

Just go to Settings > Reports.

Yes, you can create folders to separate the files and also create tags for each document, facilitating the location.

You may execute the following types of signature:
- Digital signature – Requires Digital Certificate to confirm the signature
- Electronic Signature – Does not require Digital Certificate. Evidences are used to confirm the signature. Signature is executed on the screen using Mouse, Touch Pen or the finger itself. In addition, you may save an image of your signature and use it in the document.

It is one of the most innovating manner to sign documents using internet.

Can be used by any individual.

The Signature Portal assures the safe identification of the user that will sign and also associates confirmed evidences in the signed document.

This modality of signature does not use any Digital Certification, in this case, we collect the spelling of your signature.

As it is done in the Portal:
1. First, your signature is spelled on the computer screen, using the mouse, or directly by our Application.
2. We automatically collect evidences that will confirm the accuracy of that signature. These are:
a. Date/Time;
b. Geolocation;
c. Machine IP .
This information will be available for query after execution of signature. This means, any individual may see if the document was signed electronically, by whom and which are the evidences.

Do you have a Digital Certificate and CPF?

The Digital Certificate is the most safe identification manner in internet.

The digital Signature uses your Certificate to authenticate a signature in the document.

Just submit the document and use your Certificate as signature. See how simple it is:
1. At time of signature, we identify your certificate and you authorize the use through the PIN password.
2. We collect automatically the date and the time that the signature was carried out.

In addition, the digital signature assure the following aspects to the document:

Authenticity: a digital signature is unequivocally linked to the digital certificate of the signatory.

Integrity: each digital signature is linked to an electronic document, thus any change made in the electronic document will be noticeable by the digital signature.

Non-repudiation: a digital signature made while the digital certificate of the signatory is valid cannot have its authorship denied by the signatory.

The PDF Advanced Electronic Signature (PAdES) is an exclusive international digital signature standard for PDF files. This standard is one of the digital signature standards accepted by ICP Brazil

PAdES - PDF format files without a protocol

The PAdES standard is recommended for signing documents in PDF format.

One of the key differentiators of PAdES is the signature visual representation on the document itself, enabling the use of images and other information about the signer - similar to a manual signature, collaborating to be accepted.

The CMS Advanced Electronic Signature (CAdES) is the most widespread international standards of all. This standard is part of the digital signature standards accepted by ICP Brazil.

One of the features of its wide acceptance is the capability of signing any type of digital file. Nevertheless, this standard produces a p7s file signature, which cannot be easily viewed. Therefore, the Signature Portal produces a manifest file of the documents signed according to that standard.

The manifest of a signed document is a document tracing the signatures and the original document. This manifest contains check codes, a barcode and a QRCode so that, even when printed, you can access the signed original document.

The unilateral document is the type of document that allows only one signature.

We can use it in electronic power of attorney, technical liability terms (architects and engineers), medical reports, prescriptions, etc.

Characteristics of the Unilateral:
Storage for up to 60 months
1 signature
Files with up to 5 MB
Up to 1 attachment

The multilateral document is the type of document that allows inclusion of several signatures. This document is for larger flows.

It can be used in a purchase and sale document, commercial agreements between several parties, minutes of meetings, medical reports that involve several experts, , etc.

Characteristics of the Multilateral:
Storage for up to 60 months
Up to 10 signatures
Files with up to 10 MB
Up to 1 attachment

Upon completion of the signatures, the Portal generates a document that contains all the security markings, informing who signed, how it signed and what evidences are associated.

This document is called Manifesto and is inserted on the last page of the PDF file. .

In addition, in this document the code for Verification is informed.

With this code, anyone can verify if the document has been correctly signed through the Signature Portal Verifier.
Just insert the code informed.

Since this Manifesto document is a document in PDF format, in cases such as image or video files, the manifest document will be sent separately containing only the traceability information of the original document and who signed it.

Any type of files can be signed at the CertiSign Signature Portal.

The most common ones are pdf, docx, doc, zip, among others.

At the CertiSign Signature Portal, we use the document submission system, that is, regardless of the number of pages.

Example: In case you submit a 10-page document to be signed, the document itself is considered, not the number of pages.

The workflow of signatures at the CertiSign Signature Portal is the process of collecting signatures, whose workflow is composed by the participants required to take some action in relation to a specific document.

For each participant of a workflow of signatures, it is possible to determine the title of that individual in the document and what this participant should do. A workflow may still have or not an order of action for each signer. Finally, it is still possible to determine who should receive the signed document at the end of the workflow.

Titles in a workflow of signatures:

• Signer: the participant who agrees with the document contents.
• Witness: the participant who confirms that the document contents were agreed upon by the signers.

Possible actions for the participant of a workflow of signatures:

• Sign: generate a digital signature. Requires a digital certificate.
• Sign electronically: generate an electronic signature. Does not require a digital certificate
• Note: monitor the workflow progress. Does not interfere in the workflow of signatures.
• Authorize: authorizes the workflow continuation. Does not interfere in the workflow of signatures.
• Approve: approves or not a workflow of signatures. If you do not approve it, the workflow is restarted.

The CertiSign Signature Portal sends notifications by email, to each member of the workflow created, informing the availability of the document for viewing and the signature.

The user can also authenticate at the CertiSign Signature Portal and refer to the documents, depending on the signature.

Yes, at the CertiSign Signature Portal, you can upload multiple documents at once and sign all of them with a single click.

Yes, you can create a signature flow using the contacts registered and saving them for future use.

Example: You have created a signature flow with a supplier in which sending to given individuals in both companies is necessary. Just save the flow with a specific name and select it the next time you need to send documents to this provider. .

Yes, we have a signature application called SignApp. You can sign your documents through this application with or without digital certificate.

The CertiSign signature checker is able to validate CAdES and PAdES signatures.

To verify CAdES signatures you can send the p7s file, which accompanies the signed document, or zip file that contains the p7s and the original document inside.

To verify PAdES signatures, you simply send the signed pdf itself.

Yes, the CertiSign signatures checker has a functionality that enables sending multiple signatures at once.

Digital signatures on the CAdES standard can be attached or detached, i.e., they can have the signed content internal to its structure or external.

If the checker has not requested you to send the original document with your signature (p7s), your signature is of the attached type, and the checker has not automatically recognized the content. For this type of signature, at the end of the check, the checker enables to download the original document so that you can check what was signed.

Digital signatures on the CAdES standard can be attached or detached, i.e., they can have their signed content inside or outside its structure. If the tester has requested you to send the original document with your signature (p7s), your signature is of the detached type, and the checker cannot know what has been signed without your sending the original document. The checker requests the original document to ensure that it was not changed after the signature.

Yes. Preferably, the CertiSign signature checker accepts the zip file generated by the CertiSign Signature Portal, but it is also able to recognize signatures within a zip file, provided that this zip file contains no subfolders and no more than 3 files internally.

Yes, documents signed with digital certificate have the same legal validity of a registration and authentication in notary office.

Yes, you can sign documents with any ICP Brasil digital certificate, independently of the Certifying Authority issuer of the certificate, as long as it is valid at time of signature.

The non-repudiation provides evidence that a user performed a particular action, its author will not be able to, by technological and legal forces, deny being responsible for its contents.

The Digital Signature technology used by ICP Brazil provides this capability.

The digital signature does not make the electronic document classified, since it is not encrypted. The electronic document confidentiality can be protected by the message encryption with the recipient public key, because only by using your private key, the document can be deciphered. On the other hand, integrity and authorship confirmation are primary features of using the digital certificate to sign.

Any type of file or, if your file needs privacy, only the hash file through digital signatures in the CAdES standard as per the ICP Brazil regulations;

PDF documents through digital signatures in the PAdES standard, as per the ICP Brazil regulations;

As the digital signature is calculated based on the signed document, if the document is modified in any way, no matter how small, that change will be detected by the computer. Therefore, the document and the digital signature will be unlinked. In other words, the electronic document will lose a probative value.

The decision to discard the physical document always depends on evaluating a particular regulation, document features and risk management before the effective disposal, because if the document has some sort of mechanical or graphic identification of someone, that document should not be discarded, because it can be requested in its source format, such as the submission of a signed agreement in handwritten form, which may be the subject matter of judicial expertise.

There are situations in which agencies or entities define specific rules for disposing documents after scanned and digitally signed.

As per Provisional Measure (MP) No. 2.200-2, digitally signed electronic documents using certificates issued by the ICP Brazil have the same legal validity as paper documents bearing handwritten signatures.

It is equivalent to a physical signature recognized by similarity in a notary office.

It is possible to use the digital signature and the manual signature in the same document. This is what we call hybrid signature.

During this process, risk management is recommended to anticipate future problems by safeguarding the physical document.

In case the client proposes a manually signed agreement, this same document must be kept and its copy must be digitally signed.

No, each person can have their own Digital Certificate and produce digital signatures using it. The digital signature is the subject matter resulting from the act of signing a document using a digital certificate. This resulting object is a set of bytes produced by mathematical operation that has the original document and the signer’s private key as entries. Each signature is unique for each document; therefore, every time you prepare a signature, it will be different for each document, but it will always be possible to prove that you were the author of that signature.

Yes, witnesses sign the same way as the signer; therefore, they must have digital certificates. The difference is that the witness has another legal function in the document.

Through the Signature Portal it is possible to sign any type of document, just have a digital certificate e-CPF, e-CNPJ and even a valid NF-e certificate in ICP Brazil.

Using a e-CNPJ Certificate to sign: The signature will be issued in the name of the legal representative to the IRS.

Using an NF-e Certificate to sign The signature will be made on behalf of the holder of the Digital Certificate.

The electronic signature is based on MP 2.200-2. The portal assures the integrity of the documents, preventing that they may be violated or changed during the validation, as well as be able to confirm the authenticity of the signatories.

No, the electronic signature has a legal validity through MP 2.200-2, however, as it does not use a Digital Certificate, it does not have the same validity of a registration and authentication in notary office.

It is possible to use the electronic signature and hand written signature in a same document, and this is called hybrid signature.

In this process, management of risk is recommended to prevent future problems by saving the physical document

In a case where the client will suggests a hand signed contract, this same document should be maintained stored and a copy of such document should be signed electronically.

Yes When creating the flow of signatures in the Portal, just select how each participant will sign: Electronically or Digitally.

Yes. After the signatures, the document is stored for up to 5 years. After this period, the document is sent to the email of the administrator e withdrawn from the Portal.

Yes.

Documents signed with certificate:
During the period of up to 5 years, it is possible to check the signature using the checking code and p7s file. After the period of 5 years, the sole manner for verification is through the ps7 file.
This p7s file is a safety file .zip generated after conclusion of all the signatures in the documents.

Documents signed electronically:
During the period of up to 5 years, it is possible to check the signature using the checking code. After this period, the documents and the evidences will be sent to the email of the account.

Your account within the Portal operates as Credits. You can obtain credits for your account through the plans available in the site. We charge per document submitted, according to the quantities of signatures in the document.

Loose credits

Acquiring loose credits you save up to 30%, according to the quantity chosen. These acquired credits should be used within 1 year, as after this period, the credits that were not used will expire and you may no longer use them.

Monthly Plan

Choose a plan according to your need and assure the tranquility of monthly renewal of credits.

You may insert administrator users for your Company account and gain exclusive bonus for signatories

In this modality the credit have a validity of 30 days, because we grant a higher discount and the renewal is monthly.

If you do not identify a plan that is adequate for you, just contact us through the Fale Conosco specifying your need and our team will call you.

The Digital Certificate is an electronic document that identifies the holder. It can be used to generate digital signatures with legal validity equivalent to handwritten signatures. Therefore, do not trust the safeguard nor lend your Digital Certificate or your passwords to third parties. It is important mentioning that after signing, there is not a way to know who authorized the use of the certificate, but only which certificate was used to sign