This article is the technical reference for e-signature in DiliTrust. It covers two things:
- Authentication options per provider — what methods are available to verify the signer's identity, and what eIDAS level they give
- Technical capabilities per provider — what features are available beyond the basic signing flow
For a simpler overview of which providers are available and on which modules, see: Providers & their capabilities →
Part 1 - Authentication options by provider
⚠️ The eIDAS level of a signature depends entirely on the authentication option chosen, not just the provider. A provider that supports QES will only deliver QES if the corresponding authentication method is selected when sending the document.
DocuSign
| Authentication option | eIDAS level | Notes |
|---|---|---|
| Standard Electronic Signature | SES | Email only, no ID proofing |
| Standard + SMS / Phone | ⚠️ Not eIDAS | Despite the name "Advanced", this option is not eIDAS-compliant |
| EU Advanced — Phone Authentication | AES | SMS or call verification code. Per-use fee applies |
| EU Advanced — Knowledge-Based Authentication (KBA) | AES | Identity questions from public records (LexisNexis). US only, billed per use |
| EU Advanced — ID document check | AES | Signer's government ID analyzed and matched against envelope data |
| EU Qualified — remote ID verification | QES | Signers can store verified identity in their Identity Wallet |
| EU Qualified — in-person ID check | QES | Qualified signature with prior in-person ID verification |
| IDnow EU Qualified | QES | Qualified signature with remote ID verification via IDnow |
| Signer Held EU Qualified | QES | Certificate stored on computer, smart card or USB |
Adobe Sign
| Authentication option | eIDAS level | Notes |
|---|---|---|
| Standard Electronic Signature | SES | No verification |
| Acrobat Sign Authentication | SES | Requires sign-in with Adobe account |
| OTP email | SES | One-time code sent to the same email as the signature link. Single-factor, no account creation required |
| Password | SES | Sender defines a password (entered twice); signer must input it before signing |
| Phone authentication (2FA) | AES | 6-digit code sent to recipient's phone |
| Knowledge-Based Authentication | AES | Personal info + questions from public databases. Used in financial institutions |
| Government ID | ⚠️ Unconfirmed | Signer provides government-issued photo ID + selfie |
| Cloud-based digital signatures | ⚠️ Unconfirmed | Signer authenticates to a third-party identity provider to apply a digital signature |
Universign
Note: Universign exists in two versions in DiliSign (V1 and V2). V2 is the active version with full feature support. V1 is legacy and has limited capabilities. The options below apply to V2.
| Authentication option | eIDAS level | Notes |
|---|---|---|
| Standard Signature (OTP SMS) | SES | Requires OTP SMS authentication (unlike other providers where SES may be email-only) |
| Advanced Signature | AES | Signer must provide a valid ID document |
| Advanced Signature with Qualified Certificate | QES | In-person identity verification by an authorized person required |
| Qualified Signature | QES | Requires a qualified IT system with qualified certificate |
⚠️ QES availability for Universign: Universign offers QES options at the provider level, but native support within DiliSign may vary. Contact your administrator or support team to confirm QES availability for your tenant.
DropBox Sign (active on CLM) / HelloSign (active on Board/LEM)
| Authentication option | eIDAS level | Notes |
|---|---|---|
| Standard Electronic Signature | SES | No identification required |
| SMS authentication | SES | |
| eID verification | AES / QES | Identity verified via eID document. Supports both AES and QES |
| NOM 151 certificate | QES | For documents under Mexican regulations — digital certificate for document integrity |
Note: There are two configurations for this provider:
- HelloSign on CLM (shared account, legacy) — only supports SES. Not available on Board/LEM
- DropBox Sign on CLM / HelloSign on Board/LEM — supports SES, AES and QES as listed above
YouSign
| Authentication option | eIDAS level | Notes |
|---|---|---|
| Standard Electronic Signature | SES | No identification |
| OTP Authentication | SES | One-time code for double identity check |
| ID Verification | AES | Signer uploads ID, instantly verified (automated + optional manual check) |
| Qualified Signature | QES | Facial verification + identity check |
Box Sign
| Authentication option | eIDAS level | Notes |
|---|---|---|
| Standard Electronic Signature | SES | |
| Box login | SES | Recipient must log in to Box account. Enterprise Plus / Advanced plans only |
| SMS authentication | SES | Box sends SMS to verify recipient identity |
| Password | SES | Recipient enters sender-provided password before signing |
| CAC/PIV | ⚠️ Unconfirmed | Windows only, requires Box Tools. Uses Common Access Card or Personal Identification Verification card |
Signaturit
| Authentication option | eIDAS level | Notes |
|---|---|---|
| Standard Electronic Signature | SES | |
| OTP SMS | AES | SMS verification sent to signer |
| ID Verification | AES | Automated real-time identity check with liveness detection |
| Biometric ID verification | ⚠️ Unconfirmed | Fingerprint, facial recognition or iris scan |
| Proof of liveness | ⚠️ Unconfirmed | User performs actions (blinking, head movement) to confirm real active person |
Connective (Nitro Sign)
| Authentication option | eIDAS level | Notes |
|---|---|---|
| Standard (click or drawn signature) | SES | Acceptance by scanned image, drawn signature, or "I accept" click |
| SMS OTP + Mail Access Code (2FA) | SES | SMS or email verification code |
| ID Verification + OTP | SES / AES | Plans with SSO and 2FA offer enhanced security |
| ID Verification + OIDC | AES | |
| Remote Hash Signing | QES | |
| Smart cards | QES |
"⚠️ Unconfirmed" means the eIDAS classification for this option has not been formally validated. The option exists at the provider level but its legal standing under eIDAS is not yet confirmed in our documentation. Contact support if you need clarification.
Part 2 - Technical capabilities by provider and module
✱ = Feature requires UI development for Board/LEM (DT). It may work technically but is not yet available in the interface.
? = Unconfirmed — not yet validated in DiliSign. 1/p = 1 signature area per person maximum. — = Not applicable.
| Feature | ✱ | DocuSign DT | DocuSign CLM | Univ. V1 DT | Univ. V1 CLM | Univ. V2 DT | Univ. V2 CLM | Signaturit DT | Signaturit CLM | Adobe DT | Adobe CLM | YouSign DT | YouSign CLM | Connective DT | Connective CLM | DropBox DT | DropBox CLM | Box Sign DT | Box Sign CLM | Generic API DT | Generic API CLM |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Standard signature | ✅ | ✅ | ❌ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ❌ | ✅ | ❌ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | |
| Advanced signature | ✅ | ✅ | ❌ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ❌ | ✅ | ❌ | ✅ | ✅ | ✅ | ? | ? | ✅ | ✅ | |
| Qualified signature* (eIDAS) | ❌ | ✅ | ❌ | ❌ | ✅ | ✅ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ✅ | ❌ | ❌ | ❌ | ❌ | ❌ | ✅ | |
| Signature order | ✱ | ✅ | ✅ | ❌ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ❌ | ✅ | ❌ | ✅ | ✅ | ✅ | ? | — | ✅ | ✅ |
| Signature in parallel | ✱ | ✅ | ✅ | ❌ | ❌ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ❌ | ✅ | ❌ | ✅ | ✅ | ✅ | ? | — | ✅ | ✅ |
| Customized message | ✱ | ✅ | ✅ | ❌ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ❌ | ✅ | ❌ | ✅ | ✅ | ✅ | ? | — | ❌ | ❌ |
| Block placement: Signature area | ✱ | ✅ | ✅ | 1/p | 1/p | 1/p | 1/p | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ❌ | ❌ | ✅ | ✅ |
| Block placement: Date | ✱ | ❌ | ✅ | ❌ | ❌ | ❌ | ❌ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ❌ | ✅ | ✅ |
| Block placement: Email | ✱ | ❌ | ✅ | ❌ | ❌ | ❌ | ❌ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ❌ | ✅ | ✅ |
| Block placement: Initials | ✱ | ❌ | ✅ | ❌ | ❌ | ❌ | ❌ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ❌ | ✅ | ✅ |
| Block placement: Text | ✱ | ❌ | ✅ | ❌ | ❌ | ❌ | ❌ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ❌ | ✅ | ✅ |
| Block placement: Mention | ✱ | ❌ | ✅ | ❌ | ❌ | ❌ | ❌ | ❌ | — | ❌ | — | ❌ | ✅ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ✅ | ✅ |
| Block placement: Read and approved | ✱ | ❌ | ✅ | ❌ | ❌ | ❌ | ❌ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ❌ | ✅ | ✅ |
| Block placement: Stamp | ✱ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ✅ | ✅ |
| Email delivery status | ✱ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ❌ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ? | — | ❌ | ❌ |
| Webhook + Callback | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | |
| Direct link to sign envelope from DiliTrust | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ❌ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ❌ | ❌ | ❌ | |
| Cancel signature process | ✱ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ? | — | ✅ | ✅ |
| Modify signatories during an existing process | ✱ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ | ❌ |
| Accept modification of signatories by the signatories itself | ✱ | ❌ | ? | ❌ | — | ❌ | — | ❌ | — | ❌ | — | ❌ | — | ❌ | — | ❌ | — | ❌ | — | ❌ | ❌ |
| Certificate emission | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | |
| Sending signature request without placeholders (block) | ✱ | ✅ | ❌ | ❌ | ❌ | ✅ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ❌ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ | ✅ |
Related articles
If you have questions about authentication options or feature availability for your specific use case, contact your administrator or our support team.
The right authentication method ensures your signatures hold up legally — always match the option to the sensitivity of the document. ✨
Cet article a-t-il été utile ?
C'est super !
Merci pour votre commentaire
Désolé ! Nous n'avons pas pu vous être utile
Merci pour votre commentaire
Commentaires envoyés
Nous apprécions vos efforts et nous allons corriger l'article