AI 产品解读Browser bridge extension enabling digital document signing via native cryptographic operations for the Certisign platform
Enables digital signatures in web browsers without deprecated Java applets by bridging web applications to native cryptographic APIs and hardware security devices (smartcards, tokens)
User installs extension + native messaging host (br.com.certisign.websigner). On the Certisign platform or any integrated web app, the web page sends signing requests via custom DOM events. The content script bridges these to the extension's service worker, which communicates with the native host to access local certificate stores and perform cryptographic operations (signing, certificate reading). Results are returned to the web page.
Bridge web pages to native cryptographic operations via native messagingList and read digital certificates from OS stores and connected hardware devices (PKCS#11 tokens, smartcards)Sign data and hashes using digital certificatesSign PDF documents with embedded signaturesSupport for REST PKI integration (Lacuna Software backend)Remote/mobile device pairing for signing
- 目标用户
- Brazilian users and organizations using Certisign digital certificates / Users of portaldeassinaturas.com.br document signing platform / Users with hardware cryptographic tokens (SafeNet, smartcards)
- No login/payment flows found in extension source, but the destination service (portaldeassinaturas.com.br) behavior was not directly auditable
- The main.js file is a large bundled Angular app (~970KB) and was only partially examined via keyword search
- The 'license' concept could be confusing — it refers to a developer SDK license (B2B) rather than an end-user subscription, which required careful source analysis to distinguish
付费分析未识别到付费功能
The extension itself is free to install and use with no in-extension payment gates, upgrade prompts, or subscription flows. The 'license' concept in the code (lib.d.ts lines 7-9, event-page.js line 39/631-652) refers to a B2B developer-facing WebPKI SDK license key that web application developers purchase from Lacuna Software to integrate the signing API into their websites — not a user-facing subscription. The 'subscribe' keyword in main.js is Angular RxJS observable.subscribe() (programming pattern). The 'pro' matches are from words like 'problema', 'produced', 'provide' in Portuguese/Spanish locale strings. Digital certificates from Certisign are an external product sold separately, not a feature of the extension.
- 置信度
- 80
- 支付平台
- --
- 来源
- AI / 高
- 需要登录
- 否
- 登录理由
- The extension itself does not implement any login UI, authentication flow, or user account system. It is a passive bridge/SDK that responds to requests from web pages. The content script listens for custom DOM events from web pages and forwards them to the native messaging host. No login-related code (auth endpoints, credential storage, OAuth flows) exists in the extension source. The destination service (portaldeassinaturas.com.br) may require account access, but the extension itself gates no functionality behind login.
Zero estrelas. Assinar algo exige PhD em TI. Ridículo. Suporte ZERO. Tutoriais = ZERO. Que horror!!!!
ruim, nâo funciona.
Esta extensão bloqueia o uso normal do click do mouse usando o scroll. desabilitando a extensao volta a funcionar, por favor corrijam.
Preciso assinar um documento junto à OAB/SP, fiz o procedimento, instalei e simplesmente não funciona!!! Não consigo assinar o documento!!!
Parou de funcionar no portal de assinaturas da OAB há cerca de 2 semanas, até agora não consegui fazer funcionar de novo.
Bem ruim mesmo! Certisign dá vergonha
Confuso... fala que pode testar mas nao essa opcao em lugar nenhum, impossivel de usar com certificado digital.. uma enrolacao, so perdi meu tempo
Parem de prejudicar as pessoas, parem com a politicagem.
Infelizmente, uma dor de cabeça. Algo que era para ajudar, apenas toma tempo. Não tem suporte, não tem informação.
Durante minha experiência, informo que esta extensão não funciona em todos os navegadores, Desde que adquiri o certificado digital da Certisign, esta extensão nunca conseguiu acessar meu certificado digital A3-Token. E o pior, ninguém realiza modificações na extensão com o objetivo de realizar manutenções, corrigir bugs, etc.