Overview

An electronic signature is any data in electronic form that a person uses to sign a record and demonstrate their intent to agree to its contents. It can range from a scanned handwritten signature placed on a document to a typed name, a click-to-accept action, or a cryptographic digital signature. The defining element is that the electronic mark or process serves as evidence of the signer's approval of the information in electronic form.

Characteristics and common types

Electronic signatures are commonly grouped by the level of assurance they provide about signer identity and document integrity. Broad categories include:

  • Simple electronic signatures — low-friction methods such as a typed name, an image of a signature, or a checkbox indicating consent.
  • Advanced electronic signatures — techniques that are uniquely linked to the signer, capable of identifying the signer, and linked to the data so changes are detectable; often use cryptographic tools.
  • Qualified electronic signatures — a subclass of advanced signatures that meet specific legal and technical requirements set by regulation and are often created with certified devices or keys.

Technically, many higher-assurance solutions rely on public-key cryptography: keys, digital signatures, certificates and cryptographic hashes that provide evidence of authenticity and integrity. Timestamping services are frequently used to show when a signature was applied.

The notion of signing non-paper records predates modern computing: courts and businesses have accepted telegraph and facsimile signatures historically. With widespread electronic communication, lawmakers introduced frameworks to give electronic signatures legal effect. Examples include national laws and model acts in several countries and regional rules that recognize certain electronic signatures as equivalent to handwritten ones for many transactions.

Uses and benefits

Electronic signatures are used in contracts, banking, real estate, human resources, government filings and commercial transactions to speed processes, reduce paper handling, and create audit trails. Advantages include faster turnaround, lower costs, and better recordkeeping. However, the suitability of a given signature method depends on risk, regulatory requirements and the need to verify identity.

Limitations, security and verification

Not all electronic signatures offer the same legal protection. Simple signatures may be easier to forge or dispute, while cryptographic digital signatures provide stronger evidence of authenticity and tamper-resistance. Verification can involve examining metadata, audit logs, timestamps and certificates issued by trusted providers. Ultimately, courts and regulators examine intent, consent, and the reliability of the signing process when resolving disputes.

Standards, regulations and further reading

Different jurisdictions define standards and levels of assurance. Internationally recognized frameworks and technical standards guide implementation and cross-border recognition. For specific definitions, procedures and compliance guidance, see the following topics and resources:

  1. Electronic record and signature concepts
  2. Agreement and consent in electronic transactions
  3. Contracts and signature requirements
  4. Internet-based transmission of documents
  5. Common law approaches to signatures
  6. Telegraph signatures as historical precedent
  7. Facsimile and faxed signature history
  8. Public-key cryptography and key infrastructure
  9. Digital signature (cryptographic) principles
  10. Certificates and certificate authorities
  11. Cryptography in data integrity
  12. Legal considerations for electronic signatures
  13. eIDAS and EU rules on electronic signatures
  14. NIST digital signature guidelines
  15. ZertES and national regulations

When implementing or relying on an electronic signature, consider the transaction's legal jurisdiction, the required level of identity assurance, the retention and audit needs, and applicable standards or regulations. For technical implementations, consult cryptographic and certificate management guidance; for legal compliance, seek jurisdiction-specific resources or legal advice.