Security of Private Keys

On hard drive: vulnerable to viruses and spyware although there is PIN or password, even they are
kept in encryption condition. The whole thing of private key, digital certificate and PIN can be stolen.

On secure center: also vulnerable as users use PIN to access their private keys and digital certificates
on server. The user’s ID/PIN can also be stolen for access their private keys and digital certificates by two methods:

On local smart USB token: relatively secure, but not 100%. If someone obtained the PIN of smart USB
token by virus, and the smart USB token is still on the computer, they can hack the computer and
remotely use the private key and digital certificate in the smart USB token to sign after entering PIN.

Our biometric smart USB token with high secure microprocessor is dedicated for security of private key
and user authentication in digital signature.

Private key is export-forbidden from the token.

Private key and sensitive data are never exposed to even the computer on which the token is residing,
and not vulnerable to viruses and other threats.

Operations of encryption by private key and user authentication are executed on-board the
microprocessor chip of the biometric smart USB token.

The biometric technology on smart USB token assures that only the genuine owner of the token can be
authenticated by his or her finger.

Every single using of digital signature requests once user authentication.

Security of handwriting signature

Most of time, digital signature is embedded with a handwriting signature image from the user’s real
handwriting signature on paper. In iSignature, users can use live handwriting signature. Protecting
the handwriting signature against image-copy is also an issue for digital signature.

Watermark technology is applied in iSignature for security of handwriting signature.

Common Threat

From the storage of private keys and user authentication, we can see most of threats for digital
signature are viruses and hackers.