The RSA cryptosystem is an asymmetric cryptographic method that can be used for both encryption and digital signing. Asymmetric cryptographic methods are based on the factorization of prime numbers.
As the computer power available (to everyone) increases continuously and exponentially, cryptography has to keep up with it – with ever more complex and elaborate encryption methods. This is because high available computer power can hack simpler encryptions -by trying possible keys multiple times.
Therefore, the RSA key length is the essential factor for the security of encryption and digital signatures.
Encryption: data cannot be read without the cryptography
Digital signature: documents cannot be changed unnoticed (keyword: data integrity)
Both methods are used for electronic signing of PDF documents. The biometric data of the signature is encrypted and thus cannot be read. The PDF document is digitally signed and thus cannot be changed unnoticed. As of today, an RSA key length of 2048 bits is still considered sufficiently secure.
The BSI (German Federal Office for Information Security) recommends a key length of 3072 bits for the period beyond 2022. For cryptographic implementations starting in 2023, a key length of > 3072 bits will become mandatory. Attached is a link to the corresponding document.
To stay ahead of this development and to provide our customers with the highest possible security, StepOver already offers RSA encryption of up to 4096 bits. This applies to the RSA cryptography on the signature pad as well as in the StepOver software products. For older StepOver signature pads of the current model series, it is also possible in many cases to switch to 4096-bit RSA encryption by means of a firmware update. This saves StepOver customers from having to purchase a new signature device, and together we protect the environment.
If you are a major customer with a customized version of our signature devices (e.g. with an individual notary key), or have special requirements for the update procedure, please contact our sales department for a quote.
The digital, electronic signature – whether certificate-based or handwritten, whether on a smartphone, tablet, PC or signature pad – talk to StepOver! Our 20 years of experience, both in small projects and in the implementation in large corporations, guarantees you competent support for your project.
StepOver also offers customer-specific solutions for electronic signatures. Many of our customers have already integrated digital signatures into existing processes, making them significantly more efficient and secure. We are happy to help, please feel free to contact us.