secure2sign: Secure and Seamless Enterprise Signing for Word (including 2007).

Similar documents
GlobalSign PDF Signing Tool

E-Lock ProSigner vs. In-built Acrobat 6.0 signatures

SAFE Digital Signatures in PDF

Validating Digital Signatures in Adobe

Using Entrust certificates with Adobe PDF files and forms

Intertek esignature Customer Reference Document Author: Application Support. Page 1 of 17

An Introduction to CODE SIGNING

Getting Started 2. Inserting a Digital Signature Field without Signing 3. Signing an Unsigned Digital Signature Field 3

Publicly trusted certification authorities (CAs) confirm signers identities and bind their public key to a code signing certificate.

CoSign by ARX for PIV Cards

Adobe Acrobat 9 Digital Signatures, Changes and Improvements

Adobe Acrobat Version 8, 9, 10, and 11 Instructions

Digital signature Solution for the Secure Electronic invoicing application

Verification of digitally signed PDFs

Digital Signatures with AutoCAD and CoSign

Creating Digital Signatures

X.509 Certificate Generator User Manual

Instructions to operating forms created in MSWord and Excel

PDF Signer User Manual

eadvantage Certificate Enrollment Procedures

Implementing Federal Personal Identity Verification for VMware View. By Bryan Salek, Federal Desktop Systems Engineer, VMware

Future directions of the AusCERT Certificate Service

Procedure for How to Enroll for Digital Signature

.NET Digital Signature Library User Manual

Department of Veterans Affairs Two-Factor Authentication MobilePASS Quick Start Guide November 18, 2015

Concept of Electronic Approvals

OB10 - Digital Signing and Verification

INDEPENDENT AUDIT REPORT BASED ON THE REQUIREMENTS OF ETSI TS Aristotle University of Thessaloniki PKI ( WHOM IT MAY CONCERN

Wimba Create. Version 2.6. Installation Guide

User Guide Supplement. S/MIME Support Package for BlackBerry Smartphones BlackBerry Pearl 8100 Series

Sinadura Free digital signature

CODE SIGNING. Why Developers Need to Digitally Sign Code and Applications entrust.com

Contents. Identity Assurance (Scott Rea Dartmouth College) IdM Workshop, Brisbane Australia, August 19, 2008

RPost Outlook Quick Start Guide

HOW IT WORKS E-SIGNLIVE 1 INTRODUCTION 2 OVERVIEW

Smart Card Setup Guide

Digital Signature Verification using Historic Data

Introducing Director 11

Working with Macros and VBA in Excel 2007

Document Management Getting Started Guide

-Encryption with business partners

Exploring ADSS Server Signing Services

SEZ SEZ Online Manual Digital Signature Certficate [DSC] V Version 1.2

Plug-In How-To Guide

Meeting the FDA s Requirements for Electronic Records and Electronic Signatures (21 CFR Part 11)

Installation and configuration guide

Digital Signature: Efficient, Cut Cost and Manage Risk. Formula for Strong Digital Security

SECO Whitepaper. SuisseID Smart Card Logon Configuration Guide. Prepared for SECO. Publish Date Version V1.0

HKUST CA. Certification Practice Statement

Microsoft Office Macro Security

Signature policy for TUPAS Witnessed Signed Document

Two Factor Authentication in SonicOS

Smart Card Certificate Authentication with VMware View 4.5 and Above WHITE PAPER

Adobe PDF for electronic records

Access 2003 Macro Security Levels, Sandbox Mode, and Digitally Signed Files

Application Note Gemalto.NET 2.0 Smart Card Certificate Enrollment using Microsoft Certificate Services on Windows 2008

TechNote 0006: Digital Signatures in PDF/A-1

dobe Acrobat XI Pro Digital Signatures

Yale Software Library

INFORMATION TECHNOLOGY CERES DEPARTMENT

Revu validates and signs documents based on the Windows Certificate Store and the PKCS #12 standards. Revu also supports Adobe CDS signatures.

Technical Description. DigitalSign 3.1. State of the art legally valid electronic signature. The best, most secure and complete software for

Plug-In How-To Guide

Extended SSL Certificates

Table of Contents. Oracle/Sun JRE Upgrade Instructions. Verify Hard Disk Space JRE

The Benefits of SSL Content Inspection ABSTRACT

Public Key Infrastructure (PKI)

SEZ SEZ Online Manual- DSC Signing with Java Applet. V Version 1.0 ersion 1.0

Instructions for Acquiring a Digital Signature

2. Each server or domain controller requires its own server certificate, DoD Root Certificates and enterprise validator installed.

Building a Digital Signature to Meet State Statute Requirements Using a Certificate Authority. Adobe Acrobat Pro DC (Released July 2015)

Installation and configuration guide

Wimba Create. Version 2.5. Installation Guide

Websense Content Gateway HTTPS Configuration

CoSign for 21CFR Part 11 Compliance

Important Notes for WinConnect Server VS Software Installation:

Installing the Driver of your Plotter- / Engraver

Guide Installing Digital Certificates in Outlook 2000

DigitalPersona Privacy Manager Pro

Hang Seng HSBCnet Security. May 2016

Installing your Digital Certificate & Using on MS Out Look 2007.

Guidance for the verification of qualified digital signatures following Swiss signature law

Extended Validation SSL Certificates

21 CFR Part 11 Compliance Using STATISTICA

Helm 4 Windows Event Viewer

SAS Add in to MS Office A Tutorial Angela Hall, Zencos Consulting, Cary, NC

Microsoft Windows Server 2003 Integration Guide

Securing your Online Data Transfer with SSL

Mobile OTPK Technology for Online Digital Signatures. Dec 15, 2015

Using etoken for Securing s Using Outlook and Outlook Express

Important Notes for WinConnect Server ES Software Installation:

How to Install CoSign Connector for SharePoint

Windows Remote Access

Integrated SSL Scanning

Computer and Network Security. Outline

Transcription:

secure2sign: Secure and Seamless Enterprise Signing for Word (including 2007). Ensure integrity Checks for certificate revocation Support for two-factor digital signing Support for smart cards and etokens Electronic approval process, sign-off documents as approved, etc Time-stamping Checks for hidden data and embedded documents Support for unlimited number of signatures on the same document Includes objects that are embedded into content, such as a worksheet embedded into a Word document, in the signature. Helps with compliance such as ESIGN, etc secure2sign is an advanced digital signing tool which is integrated into Office in a manner that allows and encourages natural document signing. secure2sign makes signing documents as quick and easy as picking up a pen. Advanced security features ensure that documents are signed in a secure manner such that revoked certificates are not allowed to be used to sign documents. In addition, hidden data and embedded documents are supported. secure2sign supports the use of smart cards and two factor authentication such as the use of a PIN. 1 of 15

What Does secure2sign Offer? secure2sign enables you to digitally sign and timestamp documents so that it can be shown that the document: Has not been altered since it was signed this gives proof of content and assures integrity. Existed in this form at the time it was it was time-stamped, i.e. proof of existence. Unlike other digital signing tools, secure2sign: Does not use ActiveX controls, macros or Visual Basic code. The ability to sign without introducing active content: o o o o Eliminates the possibility of active content being maliciously exploited. Prevents the problem of firewalls filtering out documents with active content. Avoids conflicts with using documents with active content in secure environments. Ensures compatibility with Microsoft Office 2007 default native file formats (.docx) that specifically exclude any active elements (ActiveX, scripts or macros). Checks Microsoft Office documents for potentially malicious content before you sign, to ensure that you don't sign content that you are unaware of or that may display differently at a later date. Uses patent applied for techniques to prevent spoofing of the windows that display signature details. This prevents malicious programs from altering the display of signatures e.g. displaying an invalid signature as valid. Is resistant to the attacks that have been shown to affect other signing programs. Other features include: Full integration with Microsoft Word. Supports Microsoft Word 2000, 2002 (XP), 2003, 2007. Timestamping from an authorised time stamp time source to RFC 3161. Multiple signatures with co-signing and countersigning. Supports certificate validation using OCSP or CRL. (OSCP validation requires third party OCSP client.) Optional visible signature. Option to store detached signature independently for audit, etc., purposes. Display of signatures from Microsoft Office signing. Signs Office native file formats for Microsoft Office Word (.doc,.docm,.docx) as well as.rtf. mht..xml,.htm files created by Word. Signature includes objects that are embedded into content, such as a worksheet embedded into a Word document, etc. Stores log entry, from OCSP client validation of certificate at signing time, with signature. This enables the log entry to be viewed at any time after the signing for audit purposes, independent of the OCSP client software. (Requires third party OCSP client.) Full administrator control over functions, acceptable certificate revocation, etc. 2 of 15

An example of document signing using IdenTrust banking (x509) digital certificates on a smartcard with a pin number in Word 2007. Secure2sign is fully integrated into Office 2007 applications such as Word. Tool Bar menu items allow you to sign the document and view the signatures Secure2sign is found in the Add- Ins menu. Click here Click here 3 of 15

You can choose to sign only, sign with time stamp or timestamp only. secure2sign will allow signing with or without a visible graphic signature being added to the document. There is also the option to add a graphic image e.g. company logo, hand written signature etc You can choose to select a certificate from this drop down menu. 4 of 15

You also have a choice of text options that show why you have signed the document. You can type in your own reason for signing. In addition you can chose to sign all of the file or just the content. 5 of 15

6 of 15 secure2sign supports Smart cards and etokens Secure2sign supports two-factor authentication, e.g. if a PIN is required when using a certificate the PIN will be required when signing the document

Window showing an audit of signing, time stamping, reason for signing and status of certificate when signing is available via this button. This audit remains with the document and is added to every time a document is signed. 7 of 15

Click here to launch the audit window. The audit window includes the ability to view Microsoft Office 2007 signatures. When a user opens a document a window will be launched for a few seconds to advise them that the document is a signed and/or time stamped document 8 of 15

Revoked certificates: Revoked certificates cannot be used to sign documents. This is an important feature because legally they should be validated at the time of signing. If the signer's cert expires or otherwise becomes invalid later this is not relevant to a signature made earlier. 9 of 15

Hidden Metadata: secure2sign will warn you if hidden metadata could compromise you when you are about to sign a document. 10 of 15

With secure2sign a document can be Co-signed and/or Counter-signed: Co-signing process: secure2sign will allow users in an Enterprise to add multiple co-signing of a document. The original digital signature in the document. 11 of 15

Counter-signing: secure2sign will allow users in an Enterprise to add multiple counter-signing of a document. Prior to applying a counter signature secure2sign verifies the validity of the existing signatures at the time of signing. 12 of 15

Additional signature validation and audit with secure2sign: secure2sign supports both OCSP and CRL validation of certificates: OCSP call being made to a IdenTrust banking environment using CoreStreet s OCSP client. secure2sign timestamp and signature audit which is viewable by double clicking a visible graphic signature or via the verify certificate button on the tool bar. 13 of 15

Audit Logs: Certificate signing audit logs. Certificate validation history. secure2sign embedded log in the document from the OCSP validation call when the signature was applied to the document. 14 of 15

secure2sign works with any x509 certificates not just those stored on smartcards. It works both with and without the use of a pin. secure2sign works with joint US/UK certified T scheme digital certificates and the IdenTrust Banking digital certificate scheme. secure2sign will also support the US government HSPD-12 PIV cards. secure2sign supports two factor authentication such as the use of a PIN. With secure2sign, both signers and systems administrators can: Restrict choice of certificates to those from specified certificate authorities. Enforce certificate validation on signing. Enforce the use of OCSP validated certificates. Disable editing of the document, except for form fields, after signing. (Users with selected certificates can be allowed to edit the document.) These restrictions may be applied within an enterprise, so that documents signed within the enterprise can conform with the enterprise s signing policies. However, uniquely, secure2sign stores these rules within the signed document, so that signers outside of the enterprise can be forced to comply with them. Unlike other digital signing tools, secure2sign checks Microsoft Office documents for potentially malicious content before you sign, to ensure that you don't sign content that you are unaware of, or that may display differently at a later date. For example, a field could be set to change a number, such as $45,000 to $450,000 on a given date, you would have signed the document showing the lesser amount and unbeknown to you, that amount would be changed at a later date with no associated acknowledgement of that change. Below are two examples of "identity" smartcards containing digital certificates that are supported by secure2trust for digitally signing and accessing documents. info@avocosecure.com US +1 415 839 9433 Europe +44 1929 480 806 www.avocosecure.com Avoco Secure 2006 - All rights reserved. 15 of 15

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information