Hacker News new | past | comments | ask | show | jobs | submit login

In the US Military a lot of the finance, personnel action and evaluations are all e-signed. This requires your CAC (I'd card with embedded crypto) and your PIN. You insert the card into a reader and then type your pin. Document is then e-signed.



How does this stop someone from claiming that the displayed document was different to the one that was “signed”?


The e-sign on the actual document has the date/time and other PII. If it is on the document, it was signed by you.




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: