Close countries panel

Select country

For solutions in a specific country please visit our local website

Nets is a part of the Nexi Group - The European PayTech. Visit our Group website at

Careers
Operating Status
Menu​​
Go to Search Operational Status
SolutionsSupportInsight & InnovationNews & mediaAbout Nets
Choose country
Close panel​
Close panel​
Close panel​
Close panel​
Close panel​

Signing and validation

​Sign contracts, loans and other legally binding documents wherever they are, and on any device.

Nets’ offering Signing and validation can be used to create a qualified electronic signature or qualified electronic seal.

This provides the highest level of assurance meeting the eIDAS requirement for a qualified signature SAM”-module (Signature Activation Module).

Nets’ eID scheme is flexible, modular and scalable

Our solution is based on long term, in-depth understanding of planning, developing, building and running national secure and stable eID schemes.

We seek to protect the end-user’s privacy by honouring the principles of minimal information disclosure and GDPR requirements.

The solution has a high level of modularity and flexibility, based on architecture that makes it easy for you to implement user-friendly and secure authentication flows.

It is simple to extend the solution with more functionality in the future, including more partial component to suit specific needs.

​Signing and validation

Do you want to simplify the process of signing contracts, applications and other legally binding documents by using cryptographic techniques, eliminating any change to a document bearing the signature and is detectable?

You sign documents with an electronic digital identity (eID), being as binding as a signature on paper. The purpose of validating digital signatures is to check that the signature submitted by a signatory is valid at the time of signing, which is contrary to a paper-based signature. Using the Signing and validation component there cannot be made any change to a document bearing signature and due to timestamp the signature is detectable.

Our offering is based on the principles “federated signing”. Authentication happens in the IdP and use short-term keys and certificates. The service contains a small signing client that does not expose the sign text to backend. The input formats are: HTML, text, PDF, XML, and output formats: XAdES or PAdES. With authentication conducted by associated Identity Providers, a one-time signing key pair and certificate is used to generate standard advanced signature formats in XAdES and PAdES.

With the unique design, a browser-based signature client stores the document ready for signing and ensures it will not be exposed to the backend.

The signatures created by the signature service are qualified, which means they created by a trustworthy system offered by a trusted service provider, that has been assessed by an independent competent and accredited body.

The solution is conformant to CEN EN 419 241-1, CEN EN 419 241-2, EN 319 411-1, EN 319 411-2, EN 319 412-1/2/3/4/5, EN 319 421, EN 319 132-1 and EN 319 142-2.

Signing and validation component generates standard advanced signature formats in XAdES and PAdES and follows TS 119 441 and support the validation algorithm specified in English 319 102-1.

​Do you need to be compliant to the European regulations PSD2 or eIDAS?

Revised Payment Service Directive 2

Banks in Europe must be PSD2 compliant. The key objectives of the PSD2 directive is to create a more integrated European payments market, harmonizing legal framework for consumer protection and the rights by making payments more safe and secure.

PSD2 RTS COMMISSION DELEGATED REGULATION (EU) 2018/389 of 27 November 2017 supplementing Directive (EU) 2015/2366 of the European Parliament and of the Council with regards to regulatory technical standards for strong customer authentication and common and secure open standards of communication. PSD2 states that all electronic transactions (i.e. Card and Bank Transfers) initiated by a Payer (i.e. Consumer).

Nets' eID solution is developed with two separate authentication flows. To be PSD2 compliant you may not disclose, which of the user credentials is not correct. This security measure challenges the user experience and can be switch off when the authentication flow does not have to be PSD2 compliant.

Electronic identification and trust services

Governments in Europe using services to verify the identity of individuals and businesses online or the authenticity of electronic documents must be eIDAS compliant.

Services should support different levels of assurance, and users identified with two-factor authentication.

The regulation is meant to support the use of authentication and signatures across European borders, and national eIDs can be used to log in to a service in other countries. The national eID can be registered in the common pool of national eID, so it is accepted on an equal footing with the rest of the EU.

Accepting common levels of security creates trust across countries, and if an authentication nationally is at the level "high", then the rest of the countries in EU can trust it.

Privacy notice/ Cookie policy