Digital Signatures
Sign documents with cryptographic digital signatures.
Digital signatures require a Pro plan or higher ($19/mo).
Digital vs. Electronic Signatures
| Type | What It Is | Legal Status |
|---|---|---|
| Electronic | Image of signature | Varies by jurisdiction |
| Digital | Cryptographic signature | Strong legal standing |
Digital signatures provide:
- Authentication: Verifies signer identity
- Integrity: Detects document changes
- Non-repudiation: Signer cannot deny signing
Signing a Document
With Certificate
- Open the document
- Click a signature field (or Sign → Sign Document)
- Select your digital certificate
- Enter certificate password
- Configure appearance
- Click Sign
Creating Certificates
If you don’t have a certificate:
- Click Sign → Manage Certificates
- Click Create Self-Signed Certificate
- Enter your information
- Set validity period
- Create the certificate
Self-signed certificates work but aren’t trusted by default. For legal documents, use certificates from a Certificate Authority (CA).
Signature Appearance
Customize how your signature looks:
Graphic
- Draw your signature
- Upload signature image
- Use certificate icon
Text
- Name
- Date
- Location
- Reason for signing
Standard Text
Include standard information:
- Distinguished name
- Date and time
- Certificate issuer
Verifying Signatures
Automatic Verification
When opening a signed PDF:
- Penvio checks all signatures
- Status shown for each:
- ✅ Valid
- ⚠️ Warning
- ❌ Invalid
Manual Verification
- Click on the signature
- View Signature Properties
- Check:
- Signer identity
- Certificate validity
- Document integrity
Signature States
Valid
- Certificate is trusted
- Document unchanged since signing
- Signature is cryptographically correct
Invalid
- Document modified after signing
- Certificate revoked or expired
- Cryptographic verification failed
Unknown
- Certificate not trusted
- Cannot verify certificate chain
- Add certificate to trusted list to resolve
Timestamp Signatures
Add trusted timestamps:
- Configure timestamp server
- Sign the document
- Timestamp proves when signed
- Valid even after certificate expires
LTV (Long-Term Validation)
Ensure signatures remain valid long-term:
- Embed certificate chain
- Embed revocation information
- Add trusted timestamp
- Signature verifiable indefinitely
Best Practices
- Use certificates from trusted CAs for legal docs
- Include timestamps for important documents
- Keep private keys secure
- Back up certificates
- Use LTV for archival documents
Next Steps
- Certificate Encryption - Use PKI certificates for document encryption
- Password Protection - Add password protection alongside signatures
- PDF Standards - Ensure signed documents meet archival standards
Last updated on