Advanced digital signatures on the server, browser and mobile devices
ADSS Server - one modular product for all your PKI services needs
Integrate, test & monitor your trust services using our power tools
Doc Signing, Workflow & Tracking
SigningHub - Mobile Apps
Signature Creation & Verification
ADSS Signing Server
ADSS Go>Sign Service
SharePoint Digital Signatures
ADSS CA Server
ADSS RA Server
ADSS OCSP Server
ADSS SCVP Server
ADSS XKMS Server
Time Stamping & Secure Archive
ADSS TSA Server
ADSS LTANS Evidence Server
Trust Service Monitors
ADSS OCSP Monitor
ADSS CRL Monitor
ADSS Server Connectors
ADSS Client SDK
ADSS Auto File Processor
Secure Email Server
OCSP Client Tool
Legally-trusted digital signature solutions are becoming an essential requirement in any industry. Ascertia technology adds data integrity, signer authentication and long-term provability services into any business application.
Solutions by Technology
Cloud-based Digital Signatures
SharePoint Digital Signatures
Document Approval & Workflow
E-Invoice & E-Statements
E-Tendering & E-Submissions
E-Notarisation & Archiving
Digital Signature Verification
Email Signing, Verification & Archiving
Solutions by Industry
Government & Defence
Banking, Finance & Insurance
Manufacturing & Engineering
Life Sciences and Healthcare
Corporate / Enterprise & Human Resources
Legal, Real Estate & Consultancy
We build our products so they are easy to install, integrate and manage. Nevertheless our support team is never far when required and is recognised as an essential part of our success story. Simply said, we will go the extra mile for your success!
Submit a Ticket
View a Ticket
Support Services Guide
Ascertia has been a trusted provider of digital signature & PKI solutions to global clients for over 10 years. Our solutions are available on the server, desktop and mobile. Our aim is to be the world's leading provider of digital signatures & PKI technology, by providing solutions which are easy to use, cost-effective and transparent.
News & Events
Try before you buy!
Our world-leading digital signature & PKI products are available for you to test before purchase. We are confident you will be impressed with what you see.
Download Ascertia products
Try or buy Ascertia Certificates
Global: SigningHub v7.1 released
Jan 02, 2017
SigningHub v7.1 has been released with the following features and enhancements:
SigningHub has a major new capability to meet the EU eIDAS Regulation requirements for remote (server-side) signing. In particular, it meets the Level 2 “Sole Control” requirements which prove that a centrally held signing key was only used for signing under instruction from its owner. To achieve this the SigningHub iOS and Android apps have been enhanced to support a secure PKIbased protocol with the SigningHub Server to authorise the remote signing operation. The authorisation PKI key pair are stored in the secure hardware element of the user’s mobile device. Furthermore the user’s mobile device is formally registered with the SigningHub Server such that the user can only authorise remote signatures from previously registered and approved mobile devices. Detailed logs of all authorisation instructions are kept as a secure audit trail. This represents the most secure way to sign using server-held signing keys and meets the highest-level requirements of EU Qualified Signatures as well as that of other jurisdictions.
SigningHub desktop login interface has been enhanced to allow the use of OTP via SMS as an additional two factor authentication method as an alternative to the use of SAML-based external Identity Providers.
SigningHub desktop login also now supports user authentication via Google and LinkedIn credentials. More popular web-based identity providers will be supported in future releases.
SigningHub Web has been enhanced to:
(a) Enable the bulk sharing of document(s) by allowing the selection of a large number of contacts by importing a CSV file rather than having to select these manually from the SigningHub
(b) Support the use of the Microsoft OneDrive cloud drive as a SigningHub document repository in addition to Google Drive and Dropbox.
(c) Support the concept of “logged-in” user placeholder in templates to allow this to be replaced with whoever is the user at the time of use.
(d) Show documents unseen or recently updated at the top of the document listing page.
(e) Keep people who have interacted with a document informed via email on any subsequent updates. Including informing the document owner of their own actions.
(f) Allow applying of a template for the “Only Me” workflow.
(g) Allow the merging of documents directly from the Start New Workflow screen.
(h) Show a new document filter in the document listing for "Expiring in seven days".
(i) Allow the creation of custom folders enabling users to better organize their documents.
SigningHub Web Viewer has been enhanced to:
(a) Sign and then share documents directly from draft mode.
(b) Easily align signature/form fields using grid lines during document preparation.
(c) Embed form fields into the PDF document at the time of sharing.
(d) Set placeholder content for Text Fields.
(e) Show form fields attributes as set within the PDF document e.g. color, font, date format etc.
(f) Scroll the thumbnails as the user scrolls the document and vice versa.
A new recipient role is created to whom a copy of the signed the documents can be sent at the end or during the approval workflow.
SigningHub Admin has been enhanced to:
(a) Set an expiration duration against registration and activation links.
(b) Allow the OTP length to be configurable as 4, 6 or 9 digits in Service Plans.
SigningHub installer has been enhanced to:
(a) Support the installation of Mobile Web and MS Office app.
(b) Allow the changing of the database username and/or password configured in SigningHub installation.
Document rendering time has been enhanced significantly.
Many other lower-level enhancements and improvements.
Global: ADSS Server v5.3 released
Nov 01, 2016
ADSS Server v5.3 has been released with the following features and enhancements:
The ADSS Signing Service has been enhanced to:
(a) provide those services that comply with the EU eIDAS Regulation requirements to create Qualified Remote Signatures using server-held keys and certificates in accordance with CEN/TS 419241.
(b) inactivate an ADSS Server user or an application during authentication, when they attempt to sign with incorrect security credentials, for a configurable number of times.
(c) send an alert message if a signing operation fails because the signature operation fails as opposed to system failures.
The ADSS TSA Service has been enhanced to:
(a) support the RSA PSS v2.1 padding scheme.
(b) manage the size of the service logs by selecting only those transactional details that are required so that the database overhead is reduced for high throughput systems.
(c) allow the transaction logs to be searched by nonce value, message imprint value and timestamp serial number.
ADSS Server has been enhanced to:
(a) return “tryLater” if the Full Certificate Status Database (whitelist data) becomes unavailable, in the OCSP service.
(b) enable CRL polling at nextUpdate as a default setting when configuring a CA’s validation policy, in Trust Manager.
(c) enable an ADSS Server operator to configure connection pool settings for HSMs.
(d) update the default database connection pool settings to enhance its performance.
ADSS Go>Sign Viewer has been enhanced to allow a user to sign all assigned fields in one click.
ADSS AFP now supports PDF permissions and allows setting the content copying, printing, commenting etc. rights.
Global: SigningHub v7 released
Oct 03, 2016
This is a major new release that provides a modern, simplified user interface (UI), with many time-saving and ease of use features to ensure a great user experience (UX). It is also packed with a wide range of new features including:
Ability to send multiple documents in a single workflow. This is referred to as a document package. Recipients can scroll through the documents and sign one or more from the package as defined by the sender. Documents can be included in the package for guidance only, i.e. those that do not require signature, approval or editing.
Recipients are notified which pages require their input using visual cues on the document thumbnails, and the navigation tab guides recipients to all their action items across all the documents in the package, whether it is filling-in form fields, initials or signature.
Documents can be sent with signature-field placeholders for a later recipient to update. This is useful when the sender is not aware of all the recipients at the time of sending the document.
A recipient can delegate the signing of a particular document by forwarding it on to someone else, assuming this permission was given by the document owner.
A new dashboard module has been added which allows users to see:
(a) the number of pending, in-progress, completed and declined documents and to quickly access these.
(b) dashboard widgets providing easy access to important features and settings.
(c) enterprise administrators can see a widget showing snapshot of the top enterprise users in terms of signers, senders, etc. Administrators can view the full statistical information for all their users.
Business applications that are tightly integrated with SigningHub can take full control of the power of SigningHub because of the updates to the SigningHub REST/JSON API. The new SigningHub API v3 has introduced over 100+ new API calls. See the SigningHub developers guide for details:
The UX for handling bulk document operations of signing, sharing, downloading or deleting have been improved to show progress and highlight any issues whilst processing.
A new recipient role called “Meeting Host” is provided to allow in-person signing before or even after the Host recipient has signed the document.
Document workflow creation is made easier by identifying the recipient as “Only Me”, “Me and Others” and “Just Others”.
Document access duration can be set in number of days.
Pending documents that expire will be automatically declined.
A configuration option is provided to enable/disable document locking after the workflow has been completed.
Major improvements to the performance for loading, filtering and viewing documents.
Screen resolutions as low as 1024 x 768 are handled gracefully (any lower resolution directs the user to the SigningHub Mobile Web interface).
More detailed control on the branding options for SigningHub Desktop Web, Mobile Web and Native Mobile apps.
Documents can be opened directly from the Notifications area.
Many other lower-level enhancements and improvements.
ADSS OCSP Server successfully renews its FIPS 201 certification
Jul 14, 2016
Ascertia announced today the successful renewal of the company's certification for its
ADSS OCSP Server
under the US General Services Administration's (GSA) FIPS 201 Evaluation Program. The certificate can be reviewed on the Approved Product List (i.e.
. The GSA APL is essential for in identifying products that meet and exceed the requirements for US Federal Government Homeland Security Presidential Directive 12 (HSPD-12).
"Having ADSS OCSP Server re-certified as meeting FIPS 201 and listed shown on the GSA APL shows Ascertia's commitment to delivering high trust interoperable products that can be used within the US Federal and Defense markets and using the latest Windows, Unix and database platforms" added Rod Crook, Solution Director, Ascertia. "Our ADSS OCSP Server was first FIPS 201 certified (APL #583) in July 2011 and its re-certification in July 2016 (
) amply demonstrates our continued investment in digital certificate validation and our global leadership in this area. We are seeing good opportunities for new product sales and the replacement of other older third party products driven by new and existing partners."
Global: ADSS Server v5.2 released
Jul 11, 2016
ADSS Server v5.2 has been released with the following features and enhancements:
ADSS Signing Service has been enhanced to meet the EU eIDAS Regulation requirements to:
(a) Create Qualified Signatures using server-side (remote) signing in accordance with CEN/TS 419241.
(b) Create Qualified eSeals using server-side (remote) signing with user authorisation in accordance with CEN/TS 419241.
ADSS TSA Service has been enhanced to meet the EU eIDAS Regulation requirements specified in ETSI EN 319 422.
ADSS Go>Sign Viewer has been enhanced to show PDF certified signature restrictions.
ADSS Server now supports Microsoft Azure SQL Database (SQL database as a service).
ADSS Server can now send license expiry alerts to designated operators.
Global: SigningHub v6.5 released
May 31, 2016
SigningHub v6.5 has been released with the following features and enhancements:
Unsigned attachments are now supported.
A workflow recipient can start a new workflow for the received document.
The Twilio SMS gateway service is now supported.
An Enterprise setting now allows documents to be opened via the email hyperlink without logging on even for a user that is about to apply a digital signature (before this was allowed only for eSignatures).
Hand Signature drawing has been enhanced to work smoothly on touch screen devices.
The default time zone defined in “Global Settings” is used to compute the local times shown in the signature verification dialog as well as the Workflow Evidence Report.
API calls allow a document to be permanently deleted in any state.
Document display quality has been improved.
Documents can now be merged if they have small differences in original dimensions.
A new mobile web browser interface has been created that:
(a) provides a great user experience on mobile device browsers.
(b) offers the same features as native mobile app.
(c) starts with a new Dashboard feature.
New native mobile apps for iOS and Android devices have been released:
(a) A new user interface has been created to accommodate new features including: forgot password, accepting invitations, login via Active Directory, form filling etc.
(b) Improved support for varying screen sizes and the latest mobile platforms.
Global: ADSS Server v5.1 released
May 02, 2016
ADSS Server v5.1 has been released with the following features and enhancements:
The ADSS Server Certification Service has been enhanced to:
(a) Allow the same certificate alias to be used independently by multiple clients - Internally ADSS Server now appends the Client Originator ID to each Certificate Alias to provide internal separation;
(b) Allow attribute certificate issuance requests to be rejected if the CA certificate validity constraints are violated.
ADSS Server now supports the EU eIDAS Regulation No. 910/2014 and allows all possible RDNs and QC statements when generating qualified certificates.
The ADSS Server Go>Sign Service has been enhanced to support the Microsoft Edge browser.
The ADSS Server LTANS Service has been enhanced so that it does not store the resulting ERS data if the archive data is not available on the defined URL.
Global: SigningHub v6.4 released
Feb 22, 2016
SigningHub v6.4 has been released with the following features and enhancements:
Local signing using secure smartcards / USB tokens can now be performed without the need to download Java applets, which are being blocked by most modern browsers. This new approach to local signing uses Ascertia’s latest Go>Sign Desktop middleware product and works with any HTML5 browser. Further details are here: http://blog.signinghub.com/local-signing-with-smartcards-just-got-a-little-easier
SigningHub can now provision Active Directory users automatically so that users can access SigningHub using their domain credentials.
Active Directory can now be used as a live source of contact information when preparing document workflows. Any new contacts added in Active Directory are automatically added in SigningHub.
SigningHub support for authenticating users via external Identity Providers (IDP) based on SAMLv2 protocol has been extended to include Verisec Freja Mobile, Active Directory Federation Service (ADFS) and EU Stork based IDPs.
Single Sign On (SSO) support now allows users logged on using Active Directory, ADFS, Office365 and Salesforce to seamlessly login to SigningHub (either directly or via the SigningHub SharePoint/ Salesforce / Integration Demo apps) without providing their login credentials again.
Document workflow has been enhanced to
(a) allow the document owner to add/ update/ delete recipients even after sharing the document, and
(b) enable the document owner to authorise recipients to also make such changes, including the ability to replace themselves with someone else, as part of delegating or escalating the approval process.
A new option is added for busy business executives to receive a daily summary email listing all pending documents instead of receiving separate email notifications for each document.
During document preparation, it is now possible to add multiple digital signature or e-signature fields per signer to be signed in the same session.
A new option is provided within Service Plans to restrict the type of signatures to be created, for example only allowing digital signatures, or e-signatures or both types.
Initials, In-person signatures and Form Fields can now be added independently from digital/ e-signature fields.
Templates now allow one or more form fields to be added to the last page of a document rather than specifying a number. When using such a template the identified fields are automatically created last page irrespective of how many pages are in the target document.
A new bulk signing option is provided to allow a preview of one or more documents before bulk signing starts. This allows users to quickly check one or more documents before bulk signing.
Bulk document operations like archive, delete, share, comments etc. can now be performed from the Home page – these options appear when a user selects one or more documents.
Bulk user invitations for Enterprise users supports the import of Outlook or Thunderbird CSV files.
The document viewer now supports font type and size selection when filling SigningHub form fields.
An Enterprise admin can now
(a) mark a specific role as the default, which is useful when autoprovisioning users, and
(b) enable/ disable/ delete users as required.
SigningHub email messages can now be branded with the Enterprise logo, the document links are replaced with more user-friendly buttons.
Various performance, security and GUI improvements have been made, especially the home page loading performance and when deleting multiple documents.
Global: ADSS Server v5.0 released
Dec 18, 2015
ADSS Server v5.0 has been released with the following features and enhancements:
ADSS Signing Service now supports signing multiple documents in a single HTTP/S (high speed protocol) request. Multiple documents were always supported using the slower OASIS DSS protocol.
ADSS Signing Service and ADSS Go>Sign Service now support signing using selected elements within an XML document that are explicitly defined in the signing profile or within an referenced XPath expression.
ADSS Certification Service now supports asynchronous certificate request and response processing. This is useful where vetting of a certificate application must take place prior to certificate issuance.
ADSS OCSP Service now supports "NextUpdate" field in OCSP responses for non-existent certificates during white list checking. The Management Reporting section offers a new Daily Request Report feature that provides a line graph display for the period requested.
ADSS Server now supports the choice of hash algorithm to be used while sending requests to other OCSP responders.
For various services within Management Reporting, the display of transaction logs is much faster.
ADSS OCSP Server and ADSS SCVP Server are being submitted for recertification under the FIPS 201 standard to provide PIV card validation services that comply with HSPD-12.
Global: SigningHub v6.3 released
Nov 02, 2015
SigningHub v6.3 has been released with the following features and enhancements:
A number of user experience improvements have been made to document preparation and template creation. Templates can now be saved at any stage of the document preparation.
A signed Workflow Evidence Report is now created for each completed document. This is a PDF report that details all the actions that affected the document during the workflow, including who performed the action at which date and time and their IP address. The report is signed with a long-term system digital signature.
An Archive folder is now available and users can manually move documents to this folder to clear their active folders. A new document management feature controlled by the user’s Service Plan can also be configured to automatically move older documents to the archive folder.
A new housekeeping feature configurable in each Service Plan can now automatically delete old untouched documents. SigningHub notifies each user via email before deleting such documents.
A new recipient role called Editor has been created. A recipient with the Editor role can add initials or fill form fields but is not required to sign. This allows one user to fill-in a document for sign off by another user.
PDF form creation now supports adding date fields, radio buttons and check boxes.
Users can now be bulk invited by the Enterprise Admin to join an Enterprise service plan using a CSV file. When they accept they are automatically added as a contact.
Contacts can now be added in bulk using a CSV file.
Each document has a Document Log and each user has an Activity Log, these have both been enhanced to provide even more detailed audit information.
Initials and In-Person signature fields can now be replicated to the same location on one or all pages.
Single Sign-On (SSO) is supported for OAuthv2, SAMLv2 and Active Directory based login authentication methods. For example, when using SigningHub for Salesforce or SigningHub for SharePoint apps a user will not need to re-login to view, prepare or sign documents in SigningHub.
A new Mobile App SDK is available for Android and iOS platforms, this allows 3rd parties to tightly integrate with SigningHub document viewing and signing functionality into their own native mobile apps. The SDK is both brand-able and multi-lingual.
A number of performance improvements have been made, the most noticeable are: the home page document list is displayed faster; and when a document is opened it is rendered more quickly.
Session timeout handling has been improved, a user is notified when their session is about to expire, they can choose to stay connected or logout immediately. If the user doesn’t respond then they are automatically logged out after anything they were working on is saved.
Granular role based access management is now supported in SigningHub Admin.
A special option is available for local signing using Belgian eID cards without using signed Java applets.
SigningHub installer allows Windows Authentication option to connect with SQL Server.
e-signature for Mobile Apps
Standards & Compliance
SharePoint Digital Signatures
+44 (0)800 772 0 442
Years of Digital Signature
Document signing, approval workflow & tracking
Mobile Signing Apps
iOS and Android apps for use with SigningHub for long-term document signing
Our cloud-hosted service of SigningHub Cloud, start your free trial today!
ADSS Signing Server
Integrate server-side signing (PAdES, XAdES & CAdES) into your application
ADSS Go>Sign Service
Integrate secure document viewer and local signing into your applications
ADSS Certificate Authority
Digital certificate issuance and lifecycle management
ADSS Registration Authority
End-user and device certificate enrolment & approval
ADSS Validation Authority
Real-time certificate validation server suite (OCSP, XKMS and SCVP)
ADSS Time Stamp Authority
Timestamping for long-term signatures, Authenticode and InfoPath
ADSS Archive Authority
Long-term evidence archiving, auto-evidence refresh and notarisation
Cloud-based Digital Signatures
SharePoint Digital signatures
E-Invoicing & e-Statements
E-Tendering & e-Submission
E-Notarisation & Archiving
Digital Signature Use Cases
Signature Verification Use Cases
Timestamp & Archive Use cases
Approval & Workflows Use cases
eID Validation Use Cases
XML Signatures Use Cases
Understanding PDF Signatures
© Ascertia. All rights reserved.
ISO 9001:2008 Certified