The Leading News & Information Service For The Facilities, Workplace & Built Environment Community

Phishing Docs and the Digital Signature?

19 May 2017 | Updated 01 January 1970

Protecting digital documents and being able to verify that the sender of a file is, in fact, who they say they are, is fast becoming a major concern for many businesses.

Whether receiving a document from a business partner or downloading software from the Internet, the ability to verify the integrity of a file is crucial. Documents that have been tampered with or created fraudulently, pose a serious threat. A good protection strategy is the use of a digital signature. This is a mathematical scheme for demonstrating the authenticity of a digital file.

The recipient of a document has reason to believe a known sender created it and prevents them from denying receiving it, this is known as authentication and non-repudiation. Like a tamper-proof seal, it indicates that the document was not altered during delivery, its integrity was intact.

And, the sender can restrict who has access to the document. This is because digital signatures utilise public key cryptography that relies on senders and receivers having two keys, mathematically associated with each other, to encrypt messages. Each person has both a public and a private key. The sender encrypts the message with the receiver’s public key. The receiver then uses their private key to decrypt the document.

Furthermore digital, signatures are based on digital certificates which are verifiers of identity and issued by a trusted third party, a certification authority.

Says Colin Tankard of Digital Pathways (who also discusses ransomware in a recent Opinion item): “The forthcoming GDPR (General Data Protection Regulations) has put the need to identify, control and destroy sensitive data at the forefront of business owners' mindsets.

“These regulations will become a key factor in every Firm’s data security compliance strategy. Implementing a digital signature strategy will make protecting sensitive data much easier and give data owners a greater sense of protection.”

Picture: The need for digital signatures has been highlighted by recent events

Article written by Robin Snow | Published 19 May 2017


Related Articles

Ransomware - Universities and Students Under Attack

63% of British universities who responded to a Freedom of Information request made by SentinelOne, admit to being the target of a ransomware attack. Over half, 56%,...

 Read Full Article
WannaCry - Don't...Just Learn the Lessons

Earlier this year, ransomware took centre stage in one of the largest outbreaks ever, hitting a huge number of companies across the globe, writes Ravid Circus. There...

 Read Full Article
Watch What Staff Click - Ransomware Warning

Colin Tankard says the dust from the ransomware which hit major organisations around the world on Friday 12 may seem to have settled but vulnerabilities still exist in...

 Read Full Article
One in Ten Brits are Victims of Cyber Fraud

Research of over 10,000 consumers has revealed that one in ten people have been a victim of cyber fraud whilst not protected by cybersecurity software. Meanwhile, more...

 Read Full Article
Ransomware - the Protection Racket

ThisWeekinFM has been making a racket about Cyber Security because vulnerabilities are exploited at a personnel and personal level - where FM's should have some...

 Read Full Article
Logins Could be a Rotten Affair

Relying on 'auto-fill' to complete the login process for websites as well as storing bank card details to shopping sites such as eBay and Amazon can make for...

 Read Full Article
On Trend - Can Hackers Turn The Heat Off?

Ken Munro of Pan Test Partners has written a blog - the original of which and more pictures can be accessed if you Click Here  Munro says he has found...

 Read Full Article
Andromeda Strained - International Cyber Op Dismantles Botnet

On November 29, the Federal Bureau of Investigation, in close cooperation with the Luneburg Central Criminal Investigation Inspectorate in Germany, Europol’s...

 Read Full Article
NHS Seeks Friendly Fire Power In Cyber War

NHS Digital has announced (Nov 28) a £20m project to boost its ability to support the NHS with its data security - including making funds available to encourage...

 Read Full Article
Uber And The Cyber Nightmare Ride

In an unprecedented move, the National Cyber Security Centre has commented specifically on the Uber data breach - with a coded reference to the fact that Uber tried to...

 Read Full Article