1. Patent Search
  2. Details

METHOD FOR HANDWRITTEN ELECTRONIC SIGNATURE

20200117835 ยท 2020-04-16

    Inventors

    Cpc classification

    International classification

    Abstract

    A method for the electronic signature of an electronic document (DOC) by means of a handwritten signature, wherein detection means (EM) detect the handwritten signature and at least one biometric feature characterizing the handwritten signature electronically. A characterizing means (KM1, KM2, KM3) generates a character sequence (HED, HES1, HES2) characterizing the electronic document (DOC). An output means (AM1, AM2) exposes the characterizing character sequence (HED, HES1, HES2) for the signer for the handwritten copying. The detection means (EM) electronically detects a character sequence (SBH) copied in handwriting and at least one biometric feature (BMH) characterizing the character sequence (SBH) copied in handwriting. An electronic signature means (SM) generates an electronic data record (SIG) at least based on the characterizing character sequence (HED, HES1, HES2) and at least one biometric feature (BMH) characterizing the character sequence copied in handwriting (SBH). Furthermore, the invention comprises a signature generating system for application of the method according to the invention and a unit for a signature generating system according to the invention.

    Claims

    1. Method for the electronic signature of an electronic document (DOC) by means of a handwritten signature, wherein detection means (EM) electronically detect the handwritten signature and at least one biometric feature characterizing the handwritten signature, characterized in that a characterizing means (KM1, KM2, KM3) generates a character sequence (HED, HES1, HES2), characterizing the electronic document (DOC) and an output means (AM1, AM2) exposes the characterizing character sequence (HED, HES1, HES2) for the signer for handwritten copying and the detection means (EM) electronically detects a character sequence (SBH) copied in handwriting and at least one biometric feature (BMH) characterizing the character sequence (SBH) copied in handwriting, and an electronic signature means (SM) generates an electronic signature record (SIG) at least based on the characterizing character sequence (HED, HES1, HES2) and at least one biometric feature (BMH) characterizing the character sequence (SBH) copied in handwriting.

    2. Method according to claim 1, characterized in that the characterizing means (KM1, KM2, KM3) calculates the characterizing character sequence (HED, HES1, HES2) as a hash value (H) of the electronic document (DOC) in a representation in which the values of a bit sequence of the hash value (H) are coded by at least two characters of a character set (ZS) and the character set (ZS) is selected in such a manner that the number of its characters is greater than or less than a power of 2.

    3. Method according to claim 1 or 2, characterized in that the characterizing means (KM1, KM2, KM3), for generating the characterizing character sequence (HED, HES1, HES2), calculates a hash value (H) from data of the electronic document (DOC) and subsequently converts the characters of the hash value (H) into a character representation which is based on a character set (ZS) which comprises more than sixteen characters.

    4. Method according to claim 2 or 3, characterized in that the characterizing means (KM1, KM2, KM3) in each case converts values of an 8-bit sequence or a 16-bit sequence of the hash value (H) into a supercharacter as a pair of characters or into a supercharacter as a character quadruple of the character set (ZS).

    5. Method according to claim 4, characterized in that the output means (AM1, AM2) exposes a part of the characters of the characterizing character sequence (HED, HES1, HES2), in particular the first sixteen or the first twenty-four characters as a short form (HED.sub.k, HES1.sub.k, HES2.sub.k) for the characterizing character sequence (HED, HES1, HES2) for the signer for handwritten copying.

    6. Method according to claim 5, characterized in that the characterizing means (KM1, KM2, KM3) converts the characterizing character sequence (HED) further by means of a permutation of the characters so that the occurrence of a character at a place in the short form (HED.sub.k, HES1.sub.k, HES2.sub.k) of the characterizing character sequence (HED, HES1, HES2) is in each case independent at least of its immediately adjacent characters of the short form (HED.sub.k, HES1.sub.k, HES2.sub.k).

    7. Method according to one of claims 2 to 6, characterized in that the output means (AM1, AM2) combines at least four, particular six of the in each case successive characters to form in each case a composite word of the characterizing character sequence (HED, HES1, HES2).

    8. Method according to one of claims 1 to 7, characterized in that the characterizing means (KM1, KM2, KM3) for generating the supercharacters of the characterizing character sequence (HED, HES1, HES2), uses a character set which consists of twenty-six small letters of the modern Latin alphabet.

    9. Method according to claim 8, characterized in that the output means (AM1, AM2) converts the first character of a composite word of the short form (HED.sub.k, HES1.sub.k, HES2.sub.k) of the characterizing character sequence (HED, HES1, HES2) into the capital letter corresponding to the small letter.

    10. Signature generating system for applying the method according to one of claims 1 to 9, having at least one first document memory (DS1) in which an electronic document (DOC) can be stored, at least one first display means (DI1) by means of which the electronic document (DOC) can be displayed, and at least one electronic detection means (EM) by means of which a handwritten signature can be electronically detected together with at least one biometric feature characterizing the handwritten signature, characterized in that at least one first electronic characterizing means (KM1) generates from data of the electronic document (DOC) in the first document memory (DS1) a first character sequence (HED) characterizing the electronic document (DOC), in accordance with the method according to one of claims 1 to 9 and at least one first output means (AM1) electronically connected to the first characterizing means (KM1) outputs the first characterizing character sequence (HED) visually or acoustically, and the detection means (EM) electronically detects at least the character sequence (SBH) copied in handwriting, together with at least one biometric feature (BMH) characterizing the character sequence (SBH) copied in handwriting, and an electronic signature means (SM) creates an electronic signature record (SIG) at least based on the characterizing character sequence (HED, HES1, HES2) and at least one biometric feature (BMH) characterizing the character sequence (SBH) copied in handwriting.

    11. Signature generating system according to claim 10, characterized in that a first unit (ED) has the first document memory (DS1), the first characterizing means (KM1) and the first output means (AM1) and a second unit (ES) designed to be physically separate from the first unit (ED) has at least one second document memory (DS2), at least one second characterizing means (KM2) and the detection means (EM), and the first unit (ED) and the second unit (ES) have in each case at least one electronic data transmission means (DM) and the data transmission means (DM) electronically transmits the electronic document (DOC) from the first document memory (DS1) of the first unit (ED) into the second document memory (DS2) of the second unit (ES), and the second characterizing means (KM2) generates from data of the electronic document (DOC) in the second document memory (DS2) a second character sequence (HES1) characterizing the electronic document (DOC) according to the method according to one of claims 1 to 9.

    12. Signature generating system according to claim 11, characterized in that the second unit (ES) has a first part-unit (ES1) and a second part-unit (ES2) physically separated from it and the first part-unit (ES1) and the second part-unit (ES2) have in each case electronic data transmission means (DM), and the first part-unit (ES1) has the second document memory (DS2), the second characterizing means (KM2) and the detection means (EM), and the second part-unit (ES2) has a third document memory (DS3), a third characterizing means (KM3) and the second output means (AM2), and the data transmission means (DM) electronically transmits the electronic document (DOC) from the second document memory (DS2) of the first part-unit (ES1) into the third document memory (DS3) of the second part-unit (ES2) and the third characterizing means (KM3) generates from data of the electronic document (DOC) in the third document memory (DS3) a third character sequence (HES2) characterizing the electronic document (DOC) according to the method according to one of claims 1 to 9 and the second output means (AM2) outputs the third characterizing character sequence (HES2) visually or acoustically.

    13. Signature generating system according to claim 11 or 12, characterized in that the data transmission means (DM) transmits the electronic document (DOC) from the first unit (ED) to the second unit (ES) or via the interposed first part-unit (ES1) to the second part-unit (ES2), wherein the second unit (ES) or the first part-unit (ES1), respectively, is designed with respect to the transmission and storage technology in such a manner that only exactly one electronic document (DOC) can be stored and transmitted by it with each signature event.

    14. Signature generating system according to one of claims 10 to 13, characterized in that the output means (AM1, AM2) exposes a part of the characters of the characterizing character sequence (HED, HES1, HES2), particularly the first sixteen or the first twenty-four characters as short form (HED.sub.k, HES1.sub.k, HES2.sub.k) of the characterizing character sequence (HED, HES1, HES2) visually or acoustically for the signer for handwritten copying.

    15. Signature generating system according to one of claims 10 to 14, characterized by an electronic encryption means (VM) which encrypts at least one biometric feature (BMH) of the character sequence (SBH) copied in handwriting with a public key (PK) of an asymmetric pair of keys cryptographically to form an encrypted biometric feature (BMH.sub.v) and the public key (PK) used by the encryption means (VM) is configurable and, in particular, a number of public keys (PK) are stored in the unit (ED, ES, ES1) and the public key (PK) to be used for the encryption is selectable by the user of the unit (ES, ED, ES1) for a signature event.

    16. Signature generating system according to one of claims 11 to 15, characterized in that the second unit (ES) or the first part-unit (ES1) of the second unit (ES) is designed in the form of a stylus for use for handwritten writing and the detection means (EM) have motion sensors, pressure sensors and/or fingerprint sensors for the electronic detection of the biometric features (BMU, BMH).

    17. Signature generating system according to one of claims 11 to 16, characterized in that the second unit (ES) or the first part-unit (ES1) enter immediately after transmission of the document (DOC) into an operating mode shielded from the respective electronic environment and the character sequence (HED, HES1, HES2) characterizing the electronic document (DOC) is generated and displayed only in the shielded operating mode.

    18. Unit for a signature generating system according to one of claims 10 to 17, characterized by the features of the first unit (ED) or the second unit (ES) or the first part-unit (ES1) according to one of claims 10 to 17.

    Description

    BRIEF DESCRIPTION OF THE DRAWINGS

    [0030] Such a method and signature generating system has the advantage that an HES is provided for which prevents a misuse by the re-use of a copy of the handwritten signature since each individual handwritten signature is unambiguously designed for a quite particular document.

    [0031] Further advantageous embodiments of the invention are obtained from the subsequent description of the figures. In which:

    [0032] FIG. 1A shows an exemplary coding table for use in a characterizing means according to the invention,

    [0033] FIG. 1B shows a conversion of an exemplary hash value according to the coding table from FIG. 1A,

    [0034] FIG. 2A shows a block diagram of a first embodiment of a signature generating system according to the invention,

    [0035] FIG. 2B shows a block diagram of a second embodiment of a signature generating system according to the invention,

    [0036] FIG. 2C shows a block diagram of a third embodiment of a signature generating system according to the invention.

    DETAILED DESCRIPTION

    [0037] In the various figures of the drawing, identical parts are always provided with the same reference symbols.

    [0038] With respect to the subsequent description, it is claimed that the invention is not restricted to the illustrative embodiments and in this context is not restricted to all or several features of described components of features; instead, each individual part of a feature of the/each illustrative embodiment is of significance to the subject matter of the invention also detached from all other part-features described in connection therewith by itself but also in combination with any features of another illustrative embodiment.

    [0039] A core concept of the method according to the invention and of the signature generating system according to the invention is that it is not the name signature usually provided, that is to say the handwritten drawing of the name, which is of significance for an authentication of the signer, but his handwriting.

    [0040] To exaggerate slightly, a possibility would consist in that the signer copies the complete document in handwriting. Since, as a rule, this cannot be expected either from the signer or by the receiver of the signature, a, practically, reversibly unambiguous short version of the electronic document is used for the method according to the invention in the form of a character sequence HED, HES1, HES2 characterizing the document DOC or, respectively, an abbreviated short form HED.sub.k, HES1.sub.k, HES2.sub.k of the characterizing character sequence HED, HES1, HES2 based thereon is used which must be copied in handwriting by the signer. For this purpose, according to the invention, a characterizing means KM1, KM2, KM3 generates the characterizing character sequence, HED, HES1, HES2 characterizing the electronic document DOC.

    [0041] Such a characterizing character sequence HED, HES1, HES2 is preferably a hash value H of the document which is generated by means of a characterizing means KM1, KM2, KM3. The hash value H is specified especially as hexadecimal value, e.g. based on an SHA-256 hash algorithm as a 256-bit hexadecimal character sequence: [0042] H=C1 42 B0 F7 93 5A A3 60 19 D7 38 3E B5 12 53 FE [0043] 2B 6F DE 0D 7E 70 D3 8A 19 11 37 5F 08 2B AB 93

    [0044] In this context, it is particularly advantageous if the characterizing means KM1, KM2, KM3 calculates the characterizing character sequence HED, HES1, HES2 as a hash value H of the electronic document DOC in a representation which is based on a character set ZS which, differently from the hexadecimal digits, provides for handwritten writing of coherent character chains, that is to say words. The handwritten writing of words is necessary because the handwritten writing of isolated characters, in turn, opens up the possibility of copying these isolated characters from which the characterizing character sequence of other documents can be formed by being joined together.

    [0045] The hexadecimal numbers are usually not written in coherent words or characters connected to one another in handwriting, the Arabic numbers 0 to 9 even exclusively isolated and the capital letters A to F only at the start of words, which is why, on the one hand, both are unsuitable for forming handwritten words. On the other hand, hexadecimal numbers have the decisive advantage that they precisely code the values of a half byte for which purpose after all the hexadecimal set of characters was created at all.

    [0046] If the size of a character set ZS which is suitable for forming words is a power of two 2.sup.n, the character set ZS can be used for coding a bit sequence of length n analogously to the hexadecimal character set.

    [0047] In particular, the characterizing means KM1, KM2, KM3, for generating the characterizing character sequence HED, HES1, HES2 calculates a hash value H from data of the electronic document DOC and subsequently converts the characters of the hash value H into a character representation which is based on a character set ZS which comprises more than sixteen characters. The characterizing means KM1, KM2, KM3 preferably uses for generating the characterizing character sequence HED, HES1, HES2 a character set ZS, which consists of 26 small letters of the modern Latin alphabet. Alternatively, a similarly large amount of any other characters of other languages or cultures is also possible in this case.

    [0048] It is true that the character set ZS could be brought to the size of a power of two by reducing its size. The disadvantage of this is, however, that a larger character set, apart from possible disadvantages, has the one safe advantage of greater variety and thus that of greater complexity of the character sequences to be copied. If in the extreme case the character set were to consist, for instance, only of the binary numbers 0 and 1 as characters, the resultant complexity of the drawing of the character sequence to be copied for a signature would be definitely too small. There can thus be an interest in not reducing a possible character set in size, certainly if the character set is already rather small in any case. In the context of the invention, small means a maximum of sixteen characters. Conversely, it will therefore be necessary to enlarge the character set or from the existing one to construct a new and larger one with the size of a power of 2.sup.n which can be done in the following manner:

    [0049] The characters of the character set ZS are combined to form supercharacters, i.e. either to form pairs or to form triples or to form quadruples or larger combinations which corresponds to a subset of the m-fold Cartesian product of the character set ZS understood to be a set, m being equal to 2 in the case of pairs and equal to 3 in the case of triples. The number m is selected to be at least such a size that at least 2.sup.n supercharacters can be formed and thus the coding of each value of a bit sequence BS of length n is possible with one supercharacter. Quadruples would be suitable for forming supercharacters of length four from characters of the alphabet of a natural language in order to code with these bit sequences of length sixteen having a range of values of 2.sup.16=65 536. Thus, for instance in the case of the German language, the supercharacters quad, adru and rupe could be formed from the word Quadrupel, among others. It would not even have to be parts of real words of the respective language. Advantageously, however, the supercharacters are formed in harmony with the natural feeling of language so that the writing of each supercharacter, as coherent character chain, is correspondingly easier. In the case of character pairs, that is to say m=2, a method suitable for the entire Western world which is language-independent, and therefore dispenses with the formation of character sequences felt to be natural, is presented below.

    [0050] An exemplary coding table for a coding BS-K of a characterization means KM1, KM2, KM3 for converting the hash value H is shown in FIG. 1A. In the advantageous embodiment, the characterizing means KM1, KM2, KM3 in each case converts values of an 8-bit sequence of the hash value H into a supercharacter in the form of a character pair of the character set ZS. FIG. 1B shows the exemplary conversion of the exemplary hash value H from the top by a characterizing means KM1, KM2, KM3 by means of the coding table according to FIG. 1A.

    [0051] In order to improve the security of the written characterizing character sequence HED, HES1, HES2, i.e. in order to prevent that new signatures can be assembled from the parts of many signatures already made in the past, and thus can be forged, it is advantageous that the output means AM1, AM2 combines at least two, particularly three of the supercharacters following one another in each case, or pairs of characters, respectively, to form in each case one combined word of the characterizing character sequence HED, HES1, HES2. Thus, the exemplary characterizing character sequence HED, HES1, HES2 is obtained, for example for the exemplary hash value H from above and the converted supercharacters or pairs of characters according to FIG. 1B: [0052] tcgu rkyl oeju qxjb cdva fkgq spbu iozs [0053] evls whbp milt vwnv cdbt fjja ajev rfoe

    [0054] Advantageously, the characterizing character sequence HED, HES1, HES2 is converted by the characterizing means KM1, KM2, KM3 further by means of a permutation of the individual characters of the supercharacters or the pairs of characters so that the occurrence of a character at a place of the characterizing character sequence HED, HES1, HES2 is in each case independent at least of its directly adjacent characters in order to thus maximize the variety of combinations of adjacent characters. This can be achieved, for example, in that first the characters at an odd position of the characterizing character sequence HED, HES1, HES2 are chained together behind one another and then the characters at an even position of the characterizing character sequence HED, HES1, HES2 are chained together behind one another. This will lead to the following representation of the then rearranged hash value H according to the above example: [0055] tgry ojqj cvfg sbiz elwb mlvn cbfj aero [0056] cukl euxb dakq puos vshp itwv dtja jvfe

    [0057] With these various conversions, the first thirty-two characters are all completely independent of one another.

    [0058] In an advantageous embodiment, the output means AM1, AM2 exposes at least only the first sixteen characters, particularly only the first twenty-four characters of the characterizing character sequence HED, HES1, HES2 as short form HED.sub.k, HES1.sub.k, HES2.sub.k of the characterizing character sequence HED, HES1, HES2 for the signer for handwritten copying. This can be done in the form of a special emphasis in the representation of the entire characterizing character sequence HED, HES1, HES2 itself, for example by underlying or emboldening or by a separate representation of the short form HED.sub.k, HES1.sub.k, HES2.sub.k. This results for the exposed short form HED.sub.k, HES1.sub.k, HES2.sub.k, according to the above example of the hash value H, for example in: [0059] tgry ojcj cvfg sbiz

    [0060] For the exemplary choice of the first four words having a total length of sixteen letters for the short form HED.sub.k, HES1.sub.k, HES2.sub.k, there is a number of 26.sup.16 different such short forms of the characterizing character sequences HED, HES1, HES2, which is slightly greater than 2.sup.75. The restriction to the sixteen characters in the short form HED.sub.k, HES1.sub.k, HES2.sub.k thus corresponds to a 75-bit hash. With six words having four characters each or also four words having six characters each, a number corresponding to a 112-bit hash is obtained.

    [0061] For each of the words having four characters, there are 26.sup.4=456 976 possible character combinations so that with only four characters, the probability of a repetition of only one of the words to be drawn is already low. With six-character words, there are 26.sup.6=308 915 776 different words.

    [0062] This method with the formation of supercharacters in the form of character pairs, presented here, with the subsequent permutation described by way of example, has as an advantage compared with the method described further above which uses supercharacters with natural-language quadruples, that the number of 456 976 of the words formed here, having in each case four characters, is considerably larger than the number of 65 536 quadruples in that case and thus their probability for a repetition with different electronic documents is correspondingly smaller.

    [0063] How long the short form HED.sub.k, HES1.sub.k, HES2.sub.k of the characterizing character sequence HED, HES1, HES2 advantageously is depends on the requirement for the security of the HES. The security increases both with the length of the drawn words and with the length of the short form HED.sub.k, HES1.sub.k, HES2.sub.k of the characterizing character sequence HED, HES1, HES2. The disadvantage of long words is that their handwritten copying may be difficult because of their lack of familiarity. The disadvantage of many characters overall can also make the signing appear to be difficult so that the method loses acceptance overall.

    [0064] Furthermore preferably, the characters used can be extended in a simple manner by the capital letters, with unchanged handwritten writability of the characterizing character sequence HED, HES1, HES2, in that the characterizing means KM1, KM2, KM3 converts the first character of a composite word of the characterizing character sequence HED, HES1, HES2 into the capital letter corresponding to the small letter. Thus, for example, the exemplary hash value H from the top and the converted supercharacters or character pairs, respectively, according to FIG. 1B produce the exemplary short form HED.sub.k: [0065] Tgry Ojqj Cvfg Sbiz

    [0066] According to the invention, the characterizing character sequence HED, HES1, HES2 and/or the short form HED.sub.k, HES1.sub.k, HES2.sub.k is exposed by an output means AM1, AM2 for the signer for handwritten copying. Subsequently, according to the invention, a detection means EM detects a character sequence SBH copied in handwriting which corresponds to a handwritten copy of the characterizing character sequence HED, HES1, HES2 and/or the short form HED.sub.k, HES1.sub.k, HES2.sub.k. In this context, the detection means EM detects at least one biometric feature BMH, characterizing the character sequence SBH copied in handwriting.

    [0067] Additionally to the character sequence SBH copied in handwriting, the particular signature by name SBU will preferably also be detected together with at least one biometric feature BMU characterizing the particular signature by name SBU.

    [0068] According to the invention, an electronic signature record SIG is generated which is based at least on the first characterizing character sequence HED, HES1, HES2 and at least on the biometric feature BMH characterizing the character sequence SBH copied in handwriting.

    [0069] The HES according to the invention, in the form of the signature record SIG provides a great measure of security even in an insecure environment as long as the characterizing character sequence HED of the document DOC is calculated securely. The simple copying of the HES according to the invention is unproblematic since it would not be usable for other documents than the document DOC or would be invalid in this case.

    [0070] In order to further improve the forgery protection and impair the collecting of many different HES according to the invention of a person and the use of these for an artificial or simulated assembly of signature segments to form a valid HES for another document, it is provided in a further embodiment of the invention that, in particular, the biometric features BMH of the character sequence SBH copied in handwriting are encrypted with at least one public key PK of an asymmetric pair of keys cryptographically to form an encrypted biometric feature BMH. In addition, the biometric features BMU of the particular signature by name SBU can also be encrypted with the key PK to form an encrypted biometric feature BMU.sub.v. This prevents that a third party who has collected various HES of a person can evaluate the biometric features of part-segments of the signature and use them for an artificial generation of a new HES for another document.

    [0071] The public key PK is allocated, in particular, to the signer or a certification office and preferably configurable. In particular, a public key PK can also be selectable for the encryption from a number of public keys PK which are in each case allocated to a signature of another person.

    [0072] In a further advantageous embodiment, at least the characterizing character sequence HED and at least the encrypted biometric features BMU.sub.v, BMH.sub.v and/or the unencrypted biometric features BMH, BMU are connected to form the signature record SIG and cryptographically digitally signed by means of at least one first secret key S1.

    [0073] Advantageously, the signature record SIG is additionally cryptographically digitally signed by means of a second secret key S2 independent from the first secret key S1. Independent means that two secret keys S1, S2 of two different and mutually independent certification offices are used. In this case, a signature record SIG is only considered to be valid if the connection between the document DOC or the detected character sequence SBH copied in handwriting with its biometric features BMH is acknowledged by both signatures and both signatures are valid.

    [0074] Depending on requirements, only particular biometric features BMH of the character sequence SBH copied in handwriting and/or particular biometric features BMU of the handwritten particular signature by name SBU can be encrypted for acceptance into the signature record SIG and in each case other biometric features can be left unencrypted for acceptance in the signature record SIG. Thus, for instance, only the variation of pressure during the signing process could be encrypted and the trace could be left completely unencrypted, in contrast, or, for instance conversely, one of the two components of the trace, i.e., e.g. function t.fwdarw.y(t), could be encrypted and the other two functions t.fwdarw.x(t) and t.fwdarw.d(t) could be left unencrypted.

    [0075] The signature record SIG advantageously contains also a data of the signature, a detected graphical typeface of the handwritten particular signature by name SBU, a detected graphical typeface of the handwritten characterizing character sequence HED, HES1, HES2 or their short form HED.sub.k, HES1.sub.k, HES2.sub.k respectively and/or the complete name of the signer.

    [0076] FIG. 2A shows a first embodiment of a signature generating system according to the invention. The signature generating system has a first document memory DS1 in which an electronic document DOC can be stored. The electronic document DOC can be configured, for example, in a conventional form as PDF or WORD document or also have an arbitrary different digital format such as, for instance, a ZIP file, possibly comprising a number of part-documents. The electronic document DOC can either be generated by the signature generating system itself or transmitted into the signature generating system.

    [0077] In addition, the signature generating system has a first display means D11, by means of which the electronic document DOC can be displayed. The first display means DI1 can be designed, in particular, as a conventional LCD display or the like with or without touch-sensitive function, or also as a printer.

    [0078] According to the invention, the signature generating system has a first electronic characterizing means KM1 and a first output means AM1 electronically connected to the first characterizing means KM1. The first characterizing means KM1 generates from data of the electronic document DOC in the first document memory DS1 a first character sequence HED characterizing the electronic document DOC according to the method described above. The first output means AM1 outputs the first characterizing character sequence HED, and/or particularly the short form HED.sub.k based thereon, visually or acoustically. The first output means AM1 can advantageously use the first display means DI1 for outputting so that the document DOC and the first characterizing character sequence HED and/or their short form HED.sub.k are jointly output on the first display means D11.

    [0079] In addition, the signature generating system has an electronic detection means EM which electronically detects the character sequence SBH copied in handwriting, together with at least one biometric feature BMH characterizing the character sequence SBH copied in handwriting. The detection means EM preferably also detects the particular signature by name SBU and a biometric feature BMU characterizing the particular signature by name SBU. The detection means EM can in particular be designed as a signature pad or touchscreen.

    [0080] Furthermore, the signature generating system has an electronic signature means SM which generates an electronic signature record SIG at least based on a characterizing character sequence HED, HES1, HES2 and at least one biometric feature BMH characterizing the character sequence SBH copied in handwriting.

    [0081] In particular, the signature generating system has an electronic encryption means VM which encrypts at least one biometric feature BMH of the character sequence SBH copied in handwriting with a public key PK of an asymmetric pair of keys cryptographically to form an encrypted biometric feature BMH.sub.v.

    [0082] Advantageously, the public key PK used by the encryption means VM is configurable. This means that it is exchangeable and can be exchanged by another key. In particular, a number of public keys PK are stored in the unit ED, ES, ES1. In this context, the public key PK to be used for the encryption can be selected by the user of the unit ES, ED, ES1.

    [0083] The electronic signature means SM preferably connects at least the characterizing character sequence HED to encrypted biometric features BMU.sub.v, BMH.sub.v and/or unencrypted biometric features BMH, BMU to form a signature record SIG and signs it cryptographically digitally with at least one, preferably with two secret keys S1, S2 of in each case an asymmetric pair of keys.

    [0084] FIG. 2B shows a second embodiment of a signature generating system according to the invention. In contrast to the first embodiment, the signature generating system is divided into two units ED, ES physically separated from one another. Physically separated means in this context that the units can be operated as mutually independent and self-contained electronic devices which can only exchange data controlled by means of data transmission means.

    [0085] In this context, the first unit ED has the first document memory DS1, the first characterizing means KM1 and the first output means AM1 which have the same function as in the first embodiment.

    [0086] The second unit ES designed to be physically separate from the first unit ED has a second document memory DS2, a second characterizing means KM2, a second output means AM2 connected electronically to the second characterizing means KM2 and the detection means EM which also has the same function as in the first embodiment.

    [0087] The first unit ED and the second unit ES have in each case an electronic data transmission means DM. The data transmission means DM electronically transmit the electronic document DOC from the first document memory DS1 of the first unit ED into the second document memory DS2 of the second unit ES. The data transmission means DM is preferably based on a cableless data transmission, particularly on Bluetooth, NFC or 802.11-WLAN technology.

    [0088] The second characterizing means KM2 generates from data of the electronic document DOC in the second document memory DS2 a second character sequence HES1 characterizing the electronic document DOC according to the method described above. As long as the document DOC in the first document memory DS1 and in the second document memory DS2 are identical, the characterizing character sequence HED and the second characterizing character sequence HES1 must be identical. The second output means AM2 outputs the second characterizing character sequence HES1 and/or its short form HES1.sub.k visually or acoustically so that the two characterizing character sequences HED, HES1 or the two short forms HED.sub.k, HES1.sub.k can be compared with one another. This makes it possible to ensure that the document DOC has not been manipulated.

    [0089] Preferably, the second unit ES has the encryption means VM and particularly the signature means SM which have the same functions as in the first embodiment.

    [0090] FIG. 2C shows a third embodiment of a signature generating system according to the invention. In distinction from the second embodiment, the second unit ES is divided into two part-units ES1 and ES2 separated from one another physically. The first part-unit ES1 and the second part-unit ES2 have in each case electronic data transmission means DM.

    [0091] The first part-unit ES1 has the second document memory DS2, the second characterizing means KM2 and the detection means EM, the functions of which corresponding to the second embodiment.

    [0092] The second part-unit ES2 has a third document memory DS3 a third characterizing means KM3 and the second output means AM2.

    [0093] The data transmission means DM electronically transmits the electronic document DOC from the second document memory DS2 of the first part-unit ES1 into the third document memory DS3 of the second part-unit ES2.

    [0094] The third characterizing means KM3 of the second part-unit ES2 generates from data of the electronic document DOC in the third document memory DS3 a third character sequence HES2 characterizing the electronic document DOC according to the method described above. The second output means AM2 of the second part-unit ES2 outputs the third characterizing character sequence HES2 and/or its short form HES2.sub.K visually or acoustically.

    [0095] The data transmission means DM transmit the electronic document DOC from the first unit ED to the second part-unit ES2 via the interposed first part-unit ES1. The first part-unit ES1 is preferably designed with respect to the transmission and storage technology in such a manner that exactly one electronic document DOC can be stored and transmitted by it with each signature event. This complicates manipulation or exchange of the document DOC during or after the transmission.

    [0096] In a preferred embodiment, the second characterizing character sequence HES1 is transmitted by means of the data transmission means DM from the first part-unit ES1 to the second part-unit ES2. The characterizing means KM3 of the second part-unit ES2 has means for comparing the second and third characterizing character sequences HES1, HES2 or their short forms HES1.sub.k, HES2.sub.k and indicates an identity or a difference via the output means AM2. As an alternative, the first part-unit ES1 has a third output means, not shown, by means of which the second characterizing character sequence HES1 or its short forms HES1.sub.k are output. The second and third characterizing character sequences HES1, HES2 or their short forms HES1.sub.k, HES2.sub.k respectively, can then be compared visually. This makes it possible to ensure that a document DOC has not been manipulated.

    [0097] The second unit ES or the first part-unit ES1 of the second unit ES, are preferably designed in the form of a stylus for use in handwriting. The output means AM2 is preferably designed as electronic display for displaying the second characterizing character sequence HES1 or its short form HES1.sub.k, respectively, and arranged in the shaft of the stylus. The stylus is advantageously designed for writing on paper, particularly by means of an ink refill or pen/ink cartridge or the like. The stylus has, in particular, pressure sensors or motion sensors by means of which it detects the biometric features BMU, BMS. In an advantageous embodiment of the stylus, the stylus has a fingerprint sensor by means of which it detects the fingerprint when writing with the stylus as an additional biometric feature. In the further embodiment, not shown, the stylus is configured for writing on a pressure-sensitive sensor surface, e.g. that of a smartphone, of a tablet or of a signature pad. In particular, in the case of a signature pad, this provides the possibility of carrying out the detection simultaneously by two different detection means, that of the signature pad and that of the stylus.

    [0098] Advantageously, an electronic typeface is generated in the signature generating system from the detected biometric features BMU of the handwritten signature. After the detection process of the handwritten signature, the electronic typeface is displayed on at least one of the output means AM1, AM2 or display means D11, DI2 and/or transferred to the first unit ED or second part-unit ES2. Thus, the detected biometric features can be checked for consistency.

    [0099] The first part-unit ES1 preferably has the encryption means VM and particularly the signature means SM which have the same functions as in the second embodiment. Alternatively, the second part-unit ES2 can also have the encryption means VM and particularly the signature means SM, the detected biometric features BMU, BMH and the character sequence SBH copied in handwritten and the particular signature by name SBU being transferred from the first part-unit ES1 to the second part-unit ES2 by means of the data transmission means DM.

    [0100] In further advantageous embodiments of the second and third embodiments, the second unit ES and the part-unit ES1 transfer immediately after transmission of the document DOC into an operating mode shielded from the respective electronic environment, wherein the second characterizing character sequence HES1 is generated and represented only in the shielded operating mode. In this context, shielded mode means, in particular, that the data transmission means DM are switched off and any other electronic access to the second unit ES or the part-unit ES1 is stopped.

    [0101] The signature record SIG generated by the signature means SM and signed digitally can be transferred by means of the data transmission means DM to the first unit ED or to an external unit for archiving or use with the document DOC.

    [0102] The first unit ED, the second unit ES and the part-units ES1, ES2 are designed as independent electronic devices and, in particular, have a microprocessor or microcontroller by means of which the characterizing means KM1, KM2, KM3, the transmission means DM, the output means AM1, AM2 and the detection means EM are carried out or controlled, respectively. In particular, the characterizing means KM1, KM2, KM3 can be designed as a separate integrated circuit or as program in a separate microcontroller and preferably as a Secure Enclave Processor (SEP). In particular, the secret keys S1, S2 are preferably protected against unauthorized accesses by a Secure Enclave Processor (SEP).

    [0103] While the above description constitutes the preferred embodiment of the present invention, it will be appreciated that the invention is susceptible to modification, variation and change without departing from the proper scope and fair meaning of the accompanying claims.