Docs Verification

This feature allows to check the documents of eSign certification. This works by utilizing the ECDSA — Elliptic Curve Digital Signature Algorithm.

The core idea is that you can easily check whether a message was signed by the user's private key by only knowing their public key, the message they signed, and the signature they produced. The check returns false or true.

The way verification works in Aetrna is this:

Integrity

The manifest that the users are signing in eSigncontains the original_hash of the document, the verification page calculates this hash again (without the stamp page and attachments), and then compares the one in manifest against the one it calculated. If they match — the document was not tampered, otherwise the document was changed after the signing or something unexpected happened.

Signatures

The document itself contains the signatures of all involved parties that signed the manifest, which contains this:

1. Timestamp

2. File name

3. Original hash (before compression and encryption)

4. Expiry (if set)

5. Aetrna app version

6. Statement

7. Hashing algorithm (Keccak256 as of now)

8. Uploader address

9. Designated co-signer addresses

The verification page extracts the manifest, signatures and wallet addresses, then takes the signature (r, s, v) and applies ECDSA verification algorithm which yeilds the public keys, which after hashing yeild the EVM wallet addresses (last 20 bytes of the hash). If the wallet addreses match to the ones in manifest — the verification is successful, otherwise it is not.

We also provide the direct link and convenient tools so you can verify the signatures yourself using public tools like Etherscan.

The video of successful verification: