Security
      Back to home
      1. Knowledge Base
      2. Security & Privacy
      3. Security

      Types of Authentication

      If you need to authenticate your signer's identity before they sign, there are several different ways you can do that through the SIGNiX system.

      Here at SIGNiX, we offer a variety of ways to verify a signer's identity before they can place their signature on the documents they have been sent.

      We call these options authentication methods, and you must always choose one method for each of your signers on a transaction. By default, the system selects the first method in the list, and if you need something different, then you must choose the appropriate option for your situation.

      These authentication methods can be strict when it comes to security, so please make sure you select the one that best meets your company's needs.

      Each client account is set up differently, depending on the requirements of each individual area of business.  So not every client will get access to every option here. If you need additional options for your company account, please contact your Sales Rep.

      *Note that with most of the methods of authentication provided, signers will also enter their signing password during the login process before they are allowed to view and sign the documents.

      Here is a list of all authentication methods offered:

      • Email Only: The signer's identity is assumed confirmed if they have access to the email address entered by the submitter while creating the transaction. The signer will enter a password to login and sign. This is our least strict form of authentication.
      • Email Only with Submitted Questions: The signer must answer questions that the submitter entered while creating the transaction, then enter a password. The signer must enter the answers exactly as the submitter entered them, or else they will fail authentication.
      • Know-Your-Customer (KYC): The signer is prompted to enter the last 4 digits of their SSN and their full DOB. This information must match what was entered by the submitter while creating the transaction, or it must match information found in US public databases.
      • Know-Your-Customer with Submitted Questions: The signer follows the same steps as KYC listed above, then they must answer questions that the submitter entered while creating the transaction. The signer must enter the answers exactly as the submitter entered them, or else they will fail authentication.
      • Knowledge-Based (KBA) with Interactive Questions: The signer is prompted to enter the last 4 digits of their SSN and their full DOB. Then they will be given a series of multiple-choice questions about themselves. The questions are based on a US database of 30 years of public records. Questions might include past street addresses, past cars owned, past cities or states lived in, and more.

        They are difficult questions because this is our most strict form of authentication. If a person fails to answer a question correctly, they can try again with additional questions.

        If they continue to fail, they will be locked out from trying to sign for 24 hours, this cannot be lifted or changed.

        If they answer their questions correctly, they'll be moved along to enter password, then view and sign the documents.
      • Secret Code Sent via Text Message (SMS): The signer will Accept Legal Consent on the first login screen, and that action will trigger a text message to be sent to the phone number that was entered by the submitter while creating the transaction before sending it off for signature. The signer must have a mobile phone plan which allows for the acceptance of SMS text messages. The signer will enter the secret code from the text message into the box on the login screen.

        The secret code is time sensitive, so they must enter it quickly. If the code does not work because too much time has passed, the signer will be able to click on a Resend button on the login screen to send themselves a new text message. Only the most recently received secret code will be acceptable for login, any previous codes will no longer work.

      We do offer an International SMS option for some clients, however this option does come with a fee that you can discuss first with your Sales Rep. We recommend only turning on this feature if you believe your company will have many non-US signers.

      When using International SMS, here is how you must format the phone numbers:

      • All international numbers must start with a '+' (plus) sign and area code.
      • A space may or may not be used after the area code. After that, NO spaces allowed.
      • Examples
        CORRECT:+54 9113011…
        CORRECT:+549113011…
        WRONG:+54 9 11 3011… 
        WRONG:+54 9 114937…

       

      For some eNotaryDox clients, we do offer an additional authentication method to help with Remote Online Notarizations. Notaries should have access to the Knowledge-Based (KBA) with Interactive Questions and ID Scan option in their accounts with us.

      The main difference with this option is the inclusion of the ID Scan step, which allows for credential analysis. The KBA steps are the same as outlined above, then the signer will be prompted to take a picture of their ID of choice with a camera, or they can upload a picture that they have already taken and stored on their computer.

      The ID will be checked for validity, and if found to be valid, the signer will be able to proceed forward to password entry and signing the documents. If the ID is invalid, the signer will not be allowed to proceed.

      View of the Authentication Options: