With Adobe LiveCycle ES, you can certify PDF Portfolios to ensure that none of the documents contained within the portfolios are changed without being detected. Additionally, you can encrypt or policy protect PDF Portfolios and the files they contain, and you can apply usage rights to PDF Portfolios.
This article discusses limitations in the types of files you can include in certified PDF Portfolio and the order in which you must apply LiveCycle ES services when creating certified PFD Portfolios.
For definitions of the terms used in this article, see PDF Packages vs. PDF Portfolios located in the LiveCycle Doc Team blog (this blog).
The cover sheet in a certified PDF Portfolio can be an interactive form; however, the files contained in the portfolio must not be interactive. The certification for a PDF Portfolio becomes compromised if any of the component files are modified, even if the component file’s certification allows form fill-in.
To create a certified PDF Portfolio, apply operations in the following order. These services must be invoked within a short-lived process.
- (Optional) For each document to be contained in the PDF Portfolio, encrypt or policy protect, and then certify. The files in the PDF Portfolio cannot be interactive forms, so you must not apply Usage Rights.
- Assemble the PDF Portfolio.
- (Optional) Encrypt or policy protect the PDF Portfolio.
- Certify the PDF Portfolio.
- Apply Usage Rights to the PDF Portfolio.
You can also create a process that consumes component files that are already encrypted, policy-protected, or certified. In this case, the order for applying services is still the same as above with the omission of the first step. If any of the component files consumed by your process are encrypted or policy-protected, ensure your DDX file defines them in a way that avoids the Assembler service having to open them. You can accomplish this goal by defining the component files using the <PackageFiles> source element, not the <PackageFiles> filter element. For example, the following DDX produces a PDF Portfolio without requiring Assembler ES to open the component files:
<PDF result="outDoc" >
<PDF source="_AdobeCoverSheet" bookmarkTitle="Cover"/>
<PackageFiles source="doc1" required="false">
<File filename="MyFirstFile.pdf" mimetype="application/pdf"/>
<PackageFiles source="doc2" required="false">
<File filename="MySecondFile.txt" mimetype="text/plain"/>
Any of the following changes would compromise a certified PDF Portfolio:
- Component files are modified
- Component files are filled in, even if the component file’s certification allows form fill-in
- Cover page is modified, unless the certificate allows form fill-in
Information about all of the DDX elements that are discussed in this posting can be found in DDX Reference.