MANUAL OF POLICIES AND PROCEDURES
CENTER FOR DRUG EVALUATION AND RESEARCH MAPP 7610.8
3. 21 Code of Federal Regulations (CFR) Part 11.
DEFINITIONS
Digital Signature: An electronic signature based upon cryptographic methods of
originator authentication, computed by using a set of rules and a set of parameters such
that the identity of the signer and the integrity of the data can be verified.
Digital signatures apply encryption technology, enabling secure transmission of unique
identifiers over a network. Digital signatures include a certificate of authority, to ensure
the validity of the signature.
Electronic Signature: A computer data compilation of any symbol or series of symbols
executed, adopted, or authorized by an individual to be the legally binding equivalent of
the individual's handwritten signature.
An electronic signature is not technology-specific; it does not require the use of any
particular hardware or software application. Electronic signatures allow for any
technology that can authenticate the signer and the signed document. Electronic
signatures are used to approve and sign electronic documents.
Public-Key Infrastructure (PKI) Technology: A digital signature technology that
requires the use of two ‘keys,’ one private to the person signing in this fashion and one
non-private key available to the counterparty to the transaction using the digital
signature. The private key and the non-private key are mathematically related, but it is
impossible to guess the private key from the public key. Therefore, the technology
authenticates the signer and prevents identity fraud. CDER staff have PKI keys
embedded in their PIV cards.
Records: All recorded information, regardless of form or characteristics, made or
received by a Federal agency under Federal law or in connection with the transaction of
public business and preserved or appropriate for preservation by that agency or its
legitimate successor. Records are evidence of the organization, functions, policies,
decisions, procedures, operations, or other activities of the United States Government,
because of the informational value of data in them. The term ‘Records’ does not include
library and museum material made or acquired and preserved solely for reference or
exhibition purposes, or duplicate copies of records preserved only for convenience as per
44 U.S.C.3301.
EFFECTIVE DATE
This MAPP is effective upon date of publication.
Originating Office: Office of Business Informatics
Effective Date: 9/20/17; 08/10/22 Page 4 of 7