I agree about plenty of security risks outside of the tamper-evident requirement, including the chance that platforms will sell personal information if there allowed to (or even if they aren't).
When I was saying that few people know how to alter a Word document without using Word, I wasn't suggesting that would allow someone to create a document that appears valid but isn't. If you don't know how, the signature line will be blank. If you do know how, the signature line will be filled in, but there will be red "Invalid signature" wording near the signature line.
If there's a way to alter a Word document and still have Word present it as having a valid signature, then only people who work for agencies like the National Security Agency know how, and they aren't talking.
As always, a crook can use social engineering to try to get an invalid document accepted. "Don't worry about that invalid signature warning, Adobe always does that" or similar lies. |
