• Global: SigningHub v7.1 released

    Jan 02, 2017
    SigningHub v7.1 has been released with the following features and enhancements:
    • SigningHub has a major new capability to meet the EU eIDAS Regulation requirements for remote (server-side) signing. In particular, it meets the Level 2 “Sole Control” requirements which prove that a centrally held signing key was only used for signing under instruction from its owner. To achieve this the SigningHub iOS and Android apps have been enhanced to support a secure PKIbased protocol with the SigningHub Server to authorise the remote signing operation. The authorisation PKI key pair are stored in the secure hardware element of the user’s mobile device. Furthermore the user’s mobile device is formally registered with the SigningHub Server such that the user can only authorise remote signatures from previously registered and approved mobile devices. Detailed logs of all authorisation instructions are kept as a secure audit trail. This represents the most secure way to sign using server-held signing keys and meets the highest-level requirements of EU Qualified Signatures as well as that of other jurisdictions.
    • SigningHub desktop login interface has been enhanced to allow the use of OTP via SMS as an additional two factor authentication method as an alternative to the use of SAML-based external Identity Providers.
    • SigningHub desktop login also now supports user authentication via Google and LinkedIn credentials. More popular web-based identity providers will be supported in future releases.
    • SigningHub Web has been enhanced to: 
      (a) Enable the bulk sharing of document(s) by allowing the selection of a large number of contacts by importing a CSV file rather than having to select these manually from the SigningHub
      contact list.
      (b) Support the use of the Microsoft OneDrive cloud drive as a SigningHub document repository in addition to Google Drive and Dropbox.
      (c) Support the concept of “logged-in” user placeholder in templates to allow this to be replaced with whoever is the user at the time of use.
      (d) Show documents unseen or recently updated at the top of the document listing page.
      (e) Keep people who have interacted with a document informed via email on any subsequent updates. Including informing the document owner of their own actions.
      (f) Allow applying of a template for the “Only Me” workflow.
      (g) Allow the merging of documents directly from the Start New Workflow screen.
      (h) Show a new document filter in the document listing for "Expiring in seven days".
      (i) Allow the creation of custom folders enabling users to better organize their documents.
    • SigningHub Web Viewer has been enhanced to: 
      (a) Sign and then share documents directly from draft mode.
      (b) Easily align signature/form fields using grid lines during document preparation.
      (c) Embed form fields into the PDF document at the time of sharing.
      (d) Set placeholder content for Text Fields.
      (e) Show form fields attributes as set within the PDF document e.g. color, font, date format etc.
      (f) Scroll the thumbnails as the user scrolls the document and vice versa.
    • A new recipient role is created to whom a copy of the signed the documents can be sent at the end or during the approval workflow.
    • SigningHub Admin has been enhanced to:
      (a) Set an expiration duration against registration and activation links.
      (b) Allow the OTP length to be configurable as 4, 6 or 9 digits in Service Plans.
    • SigningHub installer has been enhanced to:
      (a) Support the installation of Mobile Web and MS Office app.
      (b) Allow the changing of the database username and/or password configured in SigningHub installation.
    • Document rendering time has been enhanced significantly.
    • Many other lower-level enhancements and improvements.
  • Global: ADSS Server v5.3 released

    Nov 01, 2016
    ADSS Server v5.3 has been released with the following features and enhancements:
    • The ADSS Signing Service has been enhanced to: 
      (a) provide those services that comply with the EU eIDAS Regulation requirements to create Qualified Remote Signatures using server-held keys and certificates in accordance with CEN/TS 419241.
      (b) inactivate an ADSS Server user or an application during authentication, when they attempt to sign with incorrect security credentials, for a configurable number of times.
      (c) send an alert message if a signing operation fails because the signature operation fails as opposed to system failures.
    • The ADSS TSA Service has been enhanced to: 
      (a) support the RSA PSS v2.1 padding scheme.
      (b) manage the size of the service logs by selecting only those transactional details that are required so that the database overhead is reduced for high throughput systems.
      (c) allow the transaction logs to be searched by nonce value, message imprint value and timestamp serial number.
    • ADSS Server has been enhanced to: 
      (a) return “tryLater” if the Full Certificate Status Database (whitelist data) becomes unavailable, in the OCSP service.
      (b) enable CRL polling at nextUpdate as a default setting when configuring a CA’s validation policy, in Trust Manager.
      (c) enable an ADSS Server operator to configure connection pool settings for HSMs.
      (d) update the default database connection pool settings to enhance its performance.
    • ADSS Go>Sign Viewer has been enhanced to allow a user to sign all assigned fields in one click.
    • ADSS AFP now supports PDF permissions and allows setting the content copying, printing, commenting etc. rights.
  • Global: SigningHub v7 released

    Oct 03, 2016
    This is a major new release that provides a modern, simplified user interface (UI), with many time-saving and ease of use features to ensure a great user experience (UX). It is also packed with a wide range of new features including:
    • Ability to send multiple documents in a single workflow. This is referred to as a document package. Recipients can scroll through the documents and sign one or more from the package as defined by the sender. Documents can be included in the package for guidance only, i.e. those that do not require signature, approval or editing.
    • Recipients are notified which pages require their input using visual cues on the document thumbnails, and the navigation tab guides recipients to all their action items across all the documents in the package, whether it is filling-in form fields, initials or signature.
    • Documents can be sent with signature-field placeholders for a later recipient to update. This is useful when the sender is not aware of all the recipients at the time of sending the document.
    • A recipient can delegate the signing of a particular document by forwarding it on to someone else, assuming this permission was given by the document owner.
    • A new dashboard module has been added which allows users to see: 
      (a) the number of pending, in-progress, completed and declined documents and to quickly access these.
      (b) dashboard widgets providing easy access to important features and settings.
      (c) enterprise administrators can see a widget showing snapshot of the top enterprise users in terms of signers, senders, etc. Administrators can view the full statistical information for all their users.
    • Business applications that are tightly integrated with SigningHub can take full control of the power of SigningHub because of the updates to the SigningHub REST/JSON API. The new SigningHub API v3 has introduced over 100+ new API calls. See the SigningHub developers guide for details: http://manuals.ascertia.com/SigningHub-apiguide/default.aspx
    • The UX for handling bulk document operations of signing, sharing, downloading or deleting have been improved to show progress and highlight any issues whilst processing.
    • A new recipient role called “Meeting Host” is provided to allow in-person signing before or even after the Host recipient has signed the document.
    • Document workflow creation is made easier by identifying the recipient as “Only Me”, “Me and Others” and “Just Others”.
    • Document access duration can be set in number of days.
    • Pending documents that expire will be automatically declined.
    • A configuration option is provided to enable/disable document locking after the workflow has been completed.
    • Major improvements to the performance for loading, filtering and viewing documents.
    • Screen resolutions as low as 1024 x 768 are handled gracefully (any lower resolution directs the user to the SigningHub Mobile Web interface).
    • More detailed control on the branding options for SigningHub Desktop Web, Mobile Web and Native Mobile apps.
    • Documents can be opened directly from the Notifications area.
    • Many other lower-level enhancements and improvements.
  • ADSS OCSP Server successfully renews its FIPS 201 certification

    Jul 14, 2016
    Ascertia announced today the successful renewal of the company's certification for its ADSS OCSP Server under the US General Services Administration's (GSA) FIPS 201 Evaluation Program. The certificate can be reviewed on the Approved Product List (i.e. APL #1411). The GSA APL is essential for in identifying products that meet and exceed the requirements for US Federal Government Homeland Security Presidential Directive 12 (HSPD-12).

    "Having ADSS OCSP Server re-certified as meeting FIPS 201 and listed shown on the GSA APL shows Ascertia's commitment to delivering high trust interoperable products that can be used within the US Federal and Defense markets and using the latest Windows, Unix and database platforms" added Rod Crook, Solution Director, Ascertia. "Our ADSS OCSP Server was first FIPS 201 certified (APL #583) in July 2011 and its re-certification in July 2016 (APL #1411) amply demonstrates our continued investment in digital certificate validation and our global leadership in this area.  We are seeing good opportunities for new product sales and the replacement of other older third party products driven by new and existing partners."
  • Global: ADSS Server v5.2 released

    Jul 11, 2016
    ADSS Server v5.2 has been released with the following features and enhancements:
    • ADSS Signing Service has been enhanced to meet the EU eIDAS Regulation requirements to: 
      (a) Create Qualified Signatures using server-side (remote) signing in accordance with CEN/TS 419241.
      (b) Create Qualified eSeals using server-side (remote) signing with user authorisation in accordance with CEN/TS 419241.
    • ADSS TSA Service has been enhanced to meet the EU eIDAS Regulation requirements specified in ETSI EN 319 422.
    • ADSS Go>Sign Viewer has been enhanced to show PDF certified signature restrictions.
    • ADSS Server now supports Microsoft Azure SQL Database (SQL database as a service).
    • ADSS Server can now send license expiry alerts to designated operators.
  • Global: SigningHub v6.5 released

    May 31, 2016
    SigningHub v6.5 has been released with the following features and enhancements:
    • Unsigned attachments are now supported.
    • A workflow recipient can start a new workflow for the received document.
    • The Twilio SMS gateway service is now supported.
    • An Enterprise setting now allows documents to be opened via the email hyperlink without logging on even for a user that is about to apply a digital signature (before this was allowed only for eSignatures).
    • Hand Signature drawing has been enhanced to work smoothly on touch screen devices.
    • The default time zone defined in “Global Settings” is used to compute the local times shown in the signature verification dialog as well as the Workflow Evidence Report.
    • API calls allow a document to be permanently deleted in any state.
    • Document display quality has been improved.
    • Documents can now be merged if they have small differences in original dimensions.
    • A new mobile web browser interface has been created that: 
      (a) provides a great user experience on mobile device browsers.
      (b) offers the same features as native mobile app.
      (c) starts with a new Dashboard feature.
    • New native mobile apps for iOS and Android devices have been released:
      (a) A new user interface has been created to accommodate new features including: forgot password, accepting invitations, login via Active Directory, form filling etc. 
      (b) Improved support for varying screen sizes and the latest mobile platforms.
  • Global: ADSS Server v5.1 released

    May 02, 2016
    ADSS Server v5.1 has been released with the following features and enhancements:
    • The ADSS Server Certification Service has been enhanced to:
      (a) Allow the same certificate alias to be used independently by multiple clients - Internally ADSS Server now appends the Client Originator ID to each Certificate Alias to provide internal separation;
      (b) Allow attribute certificate issuance requests to be rejected if the CA certificate validity constraints are violated.
    • ADSS Server now supports the EU eIDAS Regulation No. 910/2014 and allows all possible RDNs and QC statements when generating qualified certificates.
    • The ADSS Server Go>Sign Service has been enhanced to support the Microsoft Edge browser.
    • The ADSS Server LTANS Service has been enhanced so that it does not store the resulting ERS data if the archive data is not available on the defined URL.
  • Global: SigningHub v6.4 released

    Feb 22, 2016
    SigningHub v6.4 has been released with the following features and enhancements:
    • Local signing using secure smartcards / USB tokens can now be performed without the need to download Java applets, which are being blocked by most modern browsers. This new approach to local signing uses Ascertia’s latest Go>Sign Desktop middleware product and works with any HTML5 browser. Further details are here: http://blog.signinghub.com/local-signing-with-smartcards-just-got-a-little-easier
    • SigningHub can now provision Active Directory users automatically so that users can access SigningHub using their domain credentials.
    • Active Directory can now be used as a live source of contact information when preparing document workflows. Any new contacts added in Active Directory are automatically added in SigningHub.
    • SigningHub support for authenticating users via external Identity Providers (IDP) based on SAMLv2 protocol has been extended to include Verisec Freja Mobile, Active Directory Federation Service (ADFS) and EU Stork based IDPs.
    • Single Sign On (SSO) support now allows users logged on using Active Directory, ADFS, Office365 and Salesforce to seamlessly login to SigningHub (either directly or via the SigningHub SharePoint/ Salesforce / Integration Demo apps) without providing their login credentials again.
    • Document workflow has been enhanced to
      (a) allow the document owner to add/ update/ delete recipients even after sharing the document, and
      (b) enable the document owner to authorise recipients to also make such changes, including the ability to replace themselves with someone else, as part of delegating or escalating the approval process.
    • A new option is added for busy business executives to receive a daily summary email listing all pending documents instead of receiving separate email notifications for each document.
    • During document preparation, it is now possible to add multiple digital signature or e-signature fields per signer to be signed in the same session.
    • A new option is provided within Service Plans to restrict the type of signatures to be created, for example only allowing digital signatures, or e-signatures or both types.
    • Initials, In-person signatures and Form Fields can now be added independently from digital/ e-signature fields.
    • Templates now allow one or more form fields to be added to the last page of a document rather than specifying a number. When using such a template the identified fields are automatically created last page irrespective of how many pages are in the target document.
    • A new bulk signing option is provided to allow a preview of one or more documents before bulk signing starts. This allows users to quickly check one or more documents before bulk signing.
    • Bulk document operations like archive, delete, share, comments etc. can now be performed from the Home page – these options appear when a user selects one or more documents.
    • Bulk user invitations for Enterprise users supports the import of Outlook or Thunderbird CSV files.
    • The document viewer now supports font type and size selection when filling SigningHub form fields.
    • An Enterprise admin can now
      (a) mark a specific role as the default, which is useful when autoprovisioning users, and
      (b) enable/ disable/ delete users as required.
    • SigningHub email messages can now be branded with the Enterprise logo, the document links are replaced with more user-friendly buttons.
    • Various performance, security and GUI improvements have been made, especially the home page loading performance and when deleting multiple documents.
  • Global: ADSS Server v5.0 released

    Dec 18, 2015
    ADSS Server v5.0 has been released with the following features and enhancements:
    • ADSS Go>Sign Service can now sign using a new Go>Sign Desktop local signing application that does away with the problems of signed Java Applets. Go>Sign Applet is still available but its use is gradually being affected by restrictions in browsers such as Chrome. Go>Sign Desktop must be installed locally but then works with any HTML5 browser using JavaScript interactions. Go>Sign Desktop offers the same functionality as Go>Sign Applet and is currently available for Windows Desktops, version for MacOSX and Unix will follow.
    • ADSS Signing Service now supports signing multiple documents in a single HTTP/S (high speed protocol) request. Multiple documents were always supported using the slower OASIS DSS protocol.
    • ADSS Signing Service and ADSS Go>Sign Service now support signing using selected elements within an XML document that are explicitly defined in the signing profile or within an referenced XPath expression.
    • ADSS Certification Service now supports asynchronous certificate request and response processing. This is useful where vetting of a certificate application must take place prior to certificate issuance.
    • ADSS OCSP Service now supports "NextUpdate" field in OCSP responses for non-existent certificates during white list checking. The Management Reporting section offers a new Daily Request Report feature that provides a line graph display for the period requested.
    • ADSS Server now supports the choice of hash algorithm to be used while sending requests to other OCSP responders.
    • For various services within Management Reporting, the display of transaction logs is much faster.
    • ADSS OCSP Server and ADSS SCVP Server are being submitted for recertification under the FIPS 201 standard to provide PIV card validation services that comply with HSPD-12.
  • Global: SigningHub v6.3 released

    Nov 02, 2015
    SigningHub v6.3 has been released with the following features and enhancements:
    • A number of user experience improvements have been made to document preparation and template creation. Templates can now be saved at any stage of the document preparation.
    • A signed Workflow Evidence Report is now created for each completed document. This is a PDF report that details all the actions that affected the document during the workflow, including who performed the action at which date and time and their IP address. The report is signed with a long-term system digital signature.
    • An Archive folder is now available and users can manually move documents to this folder to clear their active folders. A new document management feature controlled by the user’s Service Plan can also be configured to automatically move older documents to the archive folder.
    • A new housekeeping feature configurable in each Service Plan can now automatically delete old untouched documents. SigningHub notifies each user via email before deleting such documents.
    • A new recipient role called Editor has been created. A recipient with the Editor role can add initials or fill form fields but is not required to sign. This allows one user to fill-in a document for sign off by another user.
    • PDF form creation now supports adding date fields, radio buttons and check boxes.
    • Users can now be bulk invited by the Enterprise Admin to join an Enterprise service plan using a CSV file. When they accept they are automatically added as a contact.
    • Contacts can now be added in bulk using a CSV file.
    • Each document has a Document Log and each user has an Activity Log, these have both been enhanced to provide even more detailed audit information.
    • Initials and In-Person signature fields can now be replicated to the same location on one or all pages.
    • Single Sign-On (SSO) is supported for OAuthv2, SAMLv2 and Active Directory based login authentication methods. For example, when using SigningHub for Salesforce or SigningHub for SharePoint apps a user will not need to re-login to view, prepare or sign documents in SigningHub.
    • A new Mobile App SDK is available for Android and iOS platforms, this allows 3rd parties to tightly integrate with SigningHub document viewing and signing functionality into their own native mobile apps. The SDK is both brand-able and multi-lingual.
    • A number of performance improvements have been made, the most noticeable are: the home page document list is displayed faster; and when a document is opened it is rendered more quickly.
    • Session timeout handling has been improved, a user is notified when their session is about to expire, they can choose to stay connected or logout immediately. If the user doesn’t respond then they are automatically logged out after anything they were working on is saved.
    • Granular role based access management is now supported in SigningHub Admin.
    • A special option is available for local signing using Belgian eID cards without using signed Java applets.
    • SigningHub installer allows Windows Authentication option to connect with SQL Server.

Sales Inquiries:
+44 (0)800 772 0 442


Years of Digital Signature