[thelist] Accepting Digital Signatures

scott.brady at homeqonline.com scott.brady at homeqonline.com
Wed Apr 11 10:45:14 CDT 2001

We have a site where our vendors can sign up for web-access.  When they
initially become vendors, they have to fill out paperwork, including IRS Form
W-9.  Our web-access signup is completely electronic (including the W-9).  So,
my task has become to determine how we can capture the user's digital signature
(legally binding).

I've spent several hours researching, including looking through Verisign.com.
I've found a lot of theoretical documents (explaining the ideas behind how they
are supposed to work), but I can't find any practical documents for actually
doing this.  (I've tried reading the W3.org docs, but they are always pretty
nebulous to me).

Ideally, we would want to store the signature (or the public key or whatever)
for the vendor in the database, so that during an audit, we can go in and show
that this vendor signed the forms on such-and-such date.

Any leads on this would be much appreicated.

For technical details, we are running Cold Fusion 4.5 and we are using 128-bit
encryption with a Verisign certificate on our secure server.


Scott Brady

More information about the thelist mailing list