Electronic Signatures
AUTHORITY TO CERTIFY ELECTRONIC SIGNATURES (GIBRALTAR)
Dr. Peter Scott Geissler has been granted authority by Her Majesty’s Government in Gibraltar under section 13(1) of the Electronic Commerce Act 2001 and pursuant to Electronic Commerce Subsidiary Legislation made under s. 25, Approval of Providers of Accreditation Certificates Regulations 2013/066 Rule 2, Schedule 1, to certify the authenticity of electronic signatures and to issue accreditation certificates for electronic signatures. According to Regulation of the European Parliament and of the Council on Electronic Identification and Trust Services for Electronic Transactions in the Internal Market, Brussels 4.6.2012 COM(2012) 238 final 2012/0146 (COD), Dr. Geissler’s authority extends throughout the European Union. Date of recognition is 9 June 2014.
ACCREDITATION AS A SERVICE PROVIDER
FOR
ELECTRONIC SIGNATURE CERTIFICATION SERVICES
PURSUANT TO
CHAPTER 426, ELECTRONIC COMMERCE ACT
PART V – PROVISION OF SIGNATURE CERTIFICATION SERVICES
- I, Dr. Peter Scott Geissler, M.D., Ph.D., Esq., European Intellectual Property Attorney, acting in my capacity as sole proprietor of the Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq., European Intellectual Property Attorney, The Duke, Office 2, Republic Street, Victoria, VCT1017, Malta, apply for approval to issue accreditation certificates for electronic signatures.
- I, Dr. Peter Scott Geissler, M.D., Ph.D., Esq., European Intellectual Property Attorney, am a certification services provider with the following technical specifications:
There are four essential components to the technical specifications, namely (i) the education, training and background of the person (i.e., myself) who must use human judgment to decide if an electronic signature is authentic; (ii) the biometric data (“shape, speed, stroke order, off-tablet motion, pen pressure and timing information”) together with the graphical image of the handwritten signature which provide a rational basis for the (human) decision as to the authenticity of an electronic signature; (iii) computer hardware and software to record, store and evaluate biometric data as well as the graphical image of the handwritten signature; and (iv) technical support; as follows:
(i) Statement of Qualifications (Appendix “A”);
(ii) Biometric Data (Appendix “B”);
(iii) Computer Hardware and Software (Appendix “C”);
(iv) Technical Support (Appendix “D”).
- I, Dr. Peter Scott Geissler, M.D., Ph.D., Esq., European Intellectual Property Attorney, have the following security systems in place:
There are five essential security provisions which must be implemented to establish the true identity of the signatory, namely: (i) obtain a high-resolution scanned image of a valid passport for each client; (ii) obtain a high-resolution scanned image of a valid driver’s license for each client (iii) obtain a high-resolution scanned image fingerprint record for each client; (iv) establish an accumulative library of each client’s handwriting samples, including where possible, biometric data (“shape, speed, stroke order, off-tablet motion, pen pressure and timing information”); and (v) telephone verification; as follows:
- Valid Passport (Appendix “E”);
- Valid Driver’s License (Appendix “F”);
- Fingerprint Records (Appendix “G”);
- Library of Client Handwriting Samples (Appendix “H”);
- Client Notification (Appendix “I”);
- Client Telephone Verification (Appendix “J”).
- I, Dr. Peter Scott Geissler, M.D., Ph.D., Esq., European Intellectual Property Attorney, intend to issue accreditation certificates in respect of electronic signatures for the following purposes.
As required for overseas registration of patents and trade marks including but not limited to:
- Administering oaths or affirmations to people executing affidavits (Ref: 7 FAM 850);
- Certifications of True Copies of documents (Ref: 7 FAM 860);
- Taking acknowledgments and verifications on trademark applications (15 U.S.C. 1061) (Ref: 7 FAM 884);
- Taking the oath of a patent applicant that he or she believes himself or herself to be the original and first inventor and concerning his or her nationality (35 U.S.C. 115) (Ref: 7 FAM 883);
- Taking the acknowledgment of the execution of an assignment, grant or conveyance of a patent or an application for a patent (35 U.S.C. 261) (Ref: 7 FAM 883).
- I, Dr. Peter Scott Geissler, M.D., Ph.D., Esq., European Intellectual Property Attorney, undertake to inform the Minister of any change in circumstances that may affect the continuing provision of accreditation certificates or the users of the certificates.
- I, Peter Scott Geissler, M.D., Ph.D., Esq., European Intellectual Property Attorney, promise to obey all laws, regulations and rules pertaining to electronic signatures.
Signed this 20th day of November 2013,
Dr. Peter Scott Geissler, M.D., Ph.D., Esq.
European Intellectual Property Attorney
ACCREDITATION AS A SERVICE PROVIDER
FOR
ELECTRONIC SIGNATURE CERTIFICATION SERVICES
PURSUANT TO
CHAPTER 426, ELECTRONIC COMMERCE ACT
PART V – PROVISION OF SIGNATURE CERTIFICATION SERVICES
APPENDIX “B”
Introduction
It is well established that if a person’s handwriting is being used as a biometric identifier, the “shape, speed, stroke order, off-tablet motion, pen pressure and timing information” during signing can be recorded, and this information is almost impossible to duplicate by an impostor.
Thus, the essential feature of computer hardware and software methods which enables an expert (i.e., myself) to authenticate an electronic signature is the simultaneous recordation of 3D biometric data (“shape, speed, stroke order, off-tablet motion, pen pressure and timing information”) in addition to the purely graphical 2D representation of the visual image of the handwritten signature.
Appreciate that there is no such thing as a truly automated method for the authentication of electronic signatures. It is always necessary for an expert (i.e., myself) to make a human judgment based upon the 3D biometric data and the graphical 2D representation of the handwritten signature.
The acquisition of biometric data is described in the following patent application entitled: ELECTRONIC SIGNATURE AUTHENTICATION METHOD AND SYSTEM; (Ref: Patent PCT/1B12/57577).
Overview
Legal documents such as contracts, agreements and affidavits typically require a handwritten signature from signatories thereto in order to render the same legally binding. The signature is assumed to be original and is normally considered enough evidence in the authentication of the signing parties when the document is under dispute. The traditional pen-to-paper approach has several shortcomings, namely fraudulent activities, misplaced documentation and forgery.
Electronic signatures aim to facilitate document management whilst trying to duplicate the traditionally accepted action of physically signing a document. Rather than print out documents for the purpose of signing, the document is rather displayed on-screen. The signer is then asked to sign on an electronic pad (or tablet) with a stylus (in a manner similar to signing with a real pen on paper) and the electronic signature representation (otherwise referred to the electronic signature) is then applied to the document displayed on-screen. Various electronic security measures exist to enforce that the document cannot then be altered in its electronic format after it has been electronically signed. In its electronic format, digital signatures and biometric data (e.g., “shape, speed, stroke order, off-tablet motion, pen pressure and timing information”) is recorded and attached to the document for subsequent authentication by an expert (person).
Method
Put simply, the method employed by the Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. to facilitate authentication of an electronic signature, is as follows:
REGISTRATION PROTOCOL
Step 1 The client introduces himself to the Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. and physically presents himself together with original government-issued official identification documents including but not limited to his or her valid passport and valid driver’s license.
Step 2 The Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. produce high-resolution scanned images of the client’s valid passport and valid driver’s license and right thumb fingerprint for subsequent storage of this digital information in a remote computer system not connected to the internet. Back-up data are stored on a read-only CD and locked in a fireproof vault within the Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq.
Step 3 The Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. follow customary legal notarial practice to establish the client’s identification. [NOTE: Staff members are licensed as Commissioner for Oaths or Notary Public as required by the laws where the notarial act is performed.]
Step 4 The client “registers” his or her electronic signature with the Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. by handwriting his or her signature upon a tablet computing device using a pen-like writing implement (called a “stylus”) in the conventional fashion. The stylus and tablet computing device record the electronic signature plus biometric data (“shape, speed, stroke order, off-tablet motion, pen pressure and timing information”) recorded during the act of signing the document; multiple handwriting samples are collected. This digital information is called a “signature card” and stored on a remote computer system not connected to the internet. Back-up data are stored on a read-only CD and locked in a fireproof vault within the Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq.
[NOTE: the registration of the client’s electronic signature sample is valid for a period of 5 years or until the expiration date of the client’s passport or driver’s license, whichever occurs first.]
MAKING AN ELECTRONIC SIGNATURE
Step 5 Days, weeks, months or even years later and anywhere in the world, the client needing to make an electronic signature writes his or her signature on a tablet computing device using a pen-like writing implement (called a “stylus”) in the conventional fashion. The stylus and tablet computing device record the electronic signature plus biometric data (“shape, speed, stroke order, off-tablet motion, pen pressure and timing information”) recorded during the act of signing the document;
Step 6 The electronic signature plus biometric data are sent to the Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. via encrypted transmission over the internet.
EVALUATING AN ELECTRONIC SIGNATURE
Step 7 The Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. receive the electronic signature plus biometric data via encrypted transmission over the internet.
Step 8 The Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. retrieve the client’s “signature card” on file that comprises the scans of the client’s identification documents plus the client’s electronic signature and biometric data as per the registration protocol described above.
Step 9 The Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. compare the most recently received electronic signature (test signature) with the set of all previous electronic signature samples (reference signatures) on file. Statistical and mathematical methods are used to evaluate the likelihood that the test signature matches the reference signatures. Put simply, the handwritten signature is decomposed into a number of different strokes. Each stroke, i, is evaluated mathematically and expressed in terms of a finite sine transform or third-order polynomial expression of the form yi(x) = aix3 + bix2 + cix + di. In effect, each stroke, i, is represented by the parameters (ai, bi, ci and di). Each stroke, i, from the test signature is compared with the corresponding stroke, i, from the set of reference signatures on file. Statistical methods are used to establish the best-fit parameters (ai, bi, ci and di). Statistical methods are also used to compare the parameters (ai, bi, ci and di) derived from any test signature with the corresponding parameters derived from the set of reference signatures. Outliers are readily identified by means of probability theory and pattern recognition algorithms. In this way, any test signature which does not conform to the pattern of strokes in the set of reference signatures is identified as questionable.
Step 10 The Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. compare the most recently received biometric data from the test signature with the set of all previous biometric data from the set of all previous electronic signature samples (reference signatures) on file. The following biometric data are recorded:
- The Cartesian coordinate, x, of the stylus over the device as a function of time, namely x = x(t);
- The Cartesian coordinate, y, of the stylus over the device as a function of time, namely y = y(t);
- Whether or not the stylus is touching the surface of the device at any time, t.
- The contact pressure, p, of the stylus with the tablet as a function of time, t, namely p = p(t);
- The speed, vxi = dxi/dt, in the direction of the x-coordinate during the interval of time when each signature stroke, i, was made, namely vxi = vxi(t);
- The speed, vyi = dyi/dt, in the direction of the y-coordinate during the interval of time each of the signature strokes, i, were made, namely vyi = vyi(t);
- The spatial orientation of the stylus during the time each of the strokes, i, was made;
- The height of the stylus during the time each of the strokes, i, was made;
- The order and direction of movement of the stylus during the time each stroke, i, was made;
- When the stylus was lifted between strokes and the duration of the pauses.
As above, the biometric data associated with the test signature is evaluated mathematically and expressed in terms of finite sine transforms or third- or higher-order polynomial expressions. In effect, each biometric parameter, j. is represented by the parameters (aj, bj, cj . . . ). Each biometric parameter, j, from the test signature is compared with the corresponding biometric parameter, j, from the set of reference signatures on file. Statistical methods are used to establish the best-fit parameters (aj, bj, cj . . . ). Statistical methods are also used to compare the parameters (aj, bj, cj . . . ) derived from the test signature with the corresponding biometric parameters derived from the set of reference signatures. In this way, any test signature which does not conform to the pattern of reference signatures is identified as questionable.
CLIENT NOTIFICATION
Step 11 Dr. Peter Scott Geissler of the Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. sends an email message to the client indicating that an electronic signature has been received for authentication.
TELEPHONE VERIFICATION
Step 14 Dr. Peter Scott Geissler of the Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. places a telephone call to the client indicating that an electronic signature has been received and requests verbal confirmation from the client that the electronic signature was made by an act of the client.
AUTHENTICATION
Step 15 Dr. Peter Scott Geissler of the Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. evaluates the authenticity of the electronic signature in light of the client’s verbal response.
Step 16 Dr. Peter Scott Geissler of the Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. evaluates the authenticity of the test signature in light of the client’s handwritten reference signature specimens on file.
Step 17 Dr. Peter Scott Geissler of the Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. evaluates the biometric data associated with the test signature in light of the client’s biometric data on file.
Step 18 Dr. Peter Scott Geissler of the Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. makes a (human) judgment regarding the authenticity of the electronic signature.
NOTIFICATION
Step 19 The Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. notify the client and /or the designated recipient that a determination has been made regarding the authenticity of the electronic signature.
Step 20 The Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. apply an electronic certification stamp to the document that serves as certification of the authenticity of the electronic signature.
ARCHIVE
Step 21 The Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. save a copy of the test signature and associated biometric data to the client’s records on the secure, remotely located computer system. Back up data is stored in a read-only CD and locked in a fireproof vault within the Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq.
APOSTILLE
Step 22 If requested to do so, the Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. shall submit the electronic document, together with the authenticated client’s electronic signature with the certification stamp by the Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. to the governmental authorities as set forth in the Hague Convention of 5 October 1961.
I verily believe and hereby confirm that the above statements are true.
Signed this 20th day of November 2013,
Dr. Peter Scott Geissler, M.D., Ph.D., Esq.
European Intellectual Property Attorney
ACCREDITATION AS A SERVICE PROVIDER
FOR
ELECTRONIC SIGNATURE CERTIFICATION SERVICE
PURSUANT TO
CHAPTER 426, ELECTRONIC COMMERCE ACT
PART V – PROVISION OF SIGNATURE CERTIFICATION SERVICES
APPENDIX “H”
Library of Client Handwriting Signatures
The Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. require all clients to provide a valid driver’s license. The purpose of this requirement is two-fold. First, the driver’s license is used to establish the identity of the client. Second, the driver’s license is used to obtain a sample of the client’s handwritten signature. This signature is kept on file and serves as a standard against which all subsequently acquired signatures are compared.
Every client’s signature is kept on file. This cumulative library of client signatures provides a rational basis for evaluating the authenticity of (future) test signatures.
I verily believe and hereby confirm that the above statements are true.
Signed this 20th day of November 2013,
Dr. Peter Scott Geissler, M.D., Ph.D., Esq.
European Intellectual Property Attorney
ACCREDITATION AS A SERVICE PROVIDER
FOR
ELECTRONIC SIGNATURE CERTIFICATION SERVICES
PURSUANT TO
CHAPTER 426, ELECTRONIC COMMERCE ACT
PART V – PROVISION OF SIGNATURE CERTIFICATION SERVICES
APPENDIX “I”
Client Notification
The Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. notify all clients by email upon receipt of any document that requires authentication of the client’s electronic signature.
The purpose of this notification is four-fold, as follows.
First, the courtesy notice provides an opportunity to alert the client that a document that purports to have been signed by the client has been received by the Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq.
Second, the courtesy notice provides an opportunity to alert the client that the authentication service is associated with a nominal notarial fee and a document processing fee.
Third, the courtesy notice provides an opportunity to alert the client that The Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. shall telephone the client for verbal confirmation of fact that a particular document includes his or her electronic signature.
Fourth, the courtesy notice provides an opportunity to alert the client that The Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. shall issue a judgment and certification within a certain time interval, usually 1 hour from the time that telephone confirmation is obtained.
I verily believe and hereby confirm that the above statements are true.
Signed this 20th day of November 2013,
Dr. Peter Scott Geissler, M.D., Ph.D., Esq.
European Intellectual Property Attorney
ACCREDITATION AS A SERVICE PROVIDER
FOR
ELECTRONIC SIGNATURE CERTIFICATION SERVICES
PURSUANT TO
CHAPTER 426, ELECTRONIC COMMERCE ACT
PART V – PROVISION OF SIGNATURE CERTIFICATION SERVICES
APPENDIX “J”
Client Telephone Verification
The Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. telephone all clients upon receipt of any document that requires authentication of the client’s electronic signature.
This is the ultimate fail-safe security measure. But for verbal confirmation from the client, the Law Offices of Dr. Peter Scott Geissler, M.D., Ph.D., Esq. shall not certify the authenticity of any electronic signature.
Such telephone conversations may be recorded only with the express permission of the client.
I verily believe and hereby confirm that the above statements are true.
Signed this 20th day of November 2013,
Dr. Peter Scott Geissler, M.D., Ph.D., Esq.
European Intellectual Property Attorney