Security Model
From ContractPal
Secure communications between the client and the ContractPal server is provided using Secure Socket Layer (SSL). Transaction participants are authenticated before starting a transaction. Authentication requires a username and password except in the case of a Single Sign On (SS0): participants may be granted a role in a transaction without a ContractPal account. Other times, the user is required to login with an account. Users are assigned roles within a transaction to control viewing of documents, wizards and signatures. Each transaction has an audit record. This record keeps track of personally identifying information with a time stamp to assist an investigation.