Editing Digital signature (section)

==Industry standards==
{{unreferenced section|date=January 2015}}
Some industries have established common interoperability standards for the use of digital signatures between members of the industry and with regulators.  These include the [[Automotive Network Exchange]] for the automobile industry and the SAFE-BioPharma Association for the [[healthcare industry]].

===Using separate key pairs for signing and encryption===
In several countries, a digital signature has a status somewhat like that of a traditional pen and paper signature, as in the
[[Electronic Signatures Directive|1999 EU digital signature directive]] and [[EIDAS|2014 EU follow-on legislation]].<ref name="Cryptomathic_MajorStandardsDigSig" /> Generally, these provisions mean that anything digitally signed legally binds the signer of the document to the terms therein. For that reason, it is often thought best to use separate key pairs for encrypting and signing. Using the encryption key pair, a person can engage in an encrypted conversation (e.g., regarding a real estate transaction), but the encryption does not legally sign every message he or she sends. Only when both parties come to an agreement do they sign a contract with their signing keys, and only then are they legally bound by the terms of a specific document. After signing, the document can be sent over the encrypted link.  If a signing key is lost or compromised, it can be revoked to mitigate any future transactions.  If an encryption key is lost, a backup or [[key escrow]] should be utilized to continue viewing encrypted content.  Signing keys should never be backed up or escrowed unless the backup destination is securely encrypted.