SigningHub Architecture & Deployment

SigningHub is a .NET application that can run on Windows Servers, in a Linux-based Docker environment, or as an Azure Web App. It provides user management, document and workflow management, auditing, and optional billing. For advanced cryptographic services, SigningHub relies on Ascertia’s ADSS Server, which delivers central or local signing, key generation, certificate management, and integration with internal or external Certification Authorities (CAs), OCSP (Online Certificate Status Protocol), and TSA (Time Stamp Authority) services. ADSS Server itself can be deployed on either Windows or Linux Servers.

This section describes the architecture and deployment scenarios for SigningHub Enterprise. This includes the dependency on ADSS Server (Advanced Digital Signature Services Server) and, where relevant, Go>Sign Desktop for client-side signing using eID or equivalent hardware devices. Peripheral modules are also covered, such as the database and the HSM (Hardware Security Module). The specific configuration of these is outside the scope of the document, and the reader is advised to consult the vendor for instructions on how to deploy in a high-availability, fault-tolerant configuration. Architecture descriptions cover the possible deployment options, which include the simple single instance through to high availability fault-tolerance set-ups.