What’s new in Adobe LiveCycle Rights Management ES

Adobe LiveCycle Rights Management ES (formerly Adobe LiveCycle Policy Server) provides added assurances that the sensitive information you manage and distribute is exposed only to the people you intended. You specify how people can use protected documents to restrict accidental or intentional forwarding to unauthorized recipients. The protections are persistently applied to a document, independent of subsequent storage and transport – inside and outside your organization.

Using Rights Management ES, you can protect PDF as well as native Microsoft Word, Microsoft Excel, and CATIA documents by using confidentiality policies. A policy is a collection of information that includes document confidentiality settings and a list of authorized users. The confidentiality settings you specify in a policy determine how a recipient can use documents to which you apply the policy. Because PDF documents can contain any type of information, such as text, audio, and video files, you can use Rights Management ES to more safely distribute any information that is saved in a PDF document.

You can use policies to do these tasks:
● Specify who can open policy-protected documents. Recipients can belong to your organization or can be external to your organization. You can also specify different confidentiality options on the same policy for different users.

● Specify the document confidentiality settings. You can restrict access to various permissions, including the ability to print and copy text, make changes, and add signatures and comments to a document. Administrators can also specify some additional confidentiality options, including the ability of a recipient to view a document offline and the ability of the user who applies the policy to revoke the document access rights or switch the policy.

● After distributing a policy-protected document, you can monitor and revoke access to the document, switch the policy, and change the access and confidentiality settings. Users can change confidentiality settings in policies they create. Administrators can change any organizational or user-created policy.

New Features in LiveCycle Rights Management ES

● Introduces policy sets to help administrators manage document policies. Policy set coordinators can organize and share policies that have a common business purpose into workgroup policy sets. Policy sets let administrators control and administer multiple policies simultaneously.

● Delivers scalability and performance improvements including enhanced directory synchronization performance as part of LiveCycle Foundation.

● Provides two-factor authentication using PKI and smartcards with Adobe Reader 8.0.

● Enhances external authorization, enabling another system to determine a user’s access to a document or file. For example, your organization may have a Content Management System (CMS) in which all of your documents are stored. Your CMS already has Access Control Lists (ACLs). The external authorization feature enables Rights Management ES to use the ACLs specified in your CMS, eliminating the need to keep ACLs in sync with Rights Management ES policies.

● Supports the ability to initiate a process in response to a particular audit event, for example, a request to
print a document.

● Provides extensible audit events, which enable implementors of client applications to define application-specific audit events and load these new event definitions onto the LiveCycle ES server.

● Implements server-side packaging features such as applying policies or removing policies as part of the Rights Management service instead of using a separate component that was needed in the previous version.

● Supports role-based administration for segregation of duties. Administrative tasks are now divided into different roles. For example, one administrator may be able to administer policies, but not server configurations. Another administrator may only be able to view the audit logs and other server configuration settings.

● Supports server side encryption packaging in FIPS mode: You can enable the Federal Information Processing Standards (FIPS) option restricting data protection to FIPS 140-2 approved algorithms using the RSA BSAFE Crypto-J 3.5.2 encryption module with FIPS 140-2 validation certificate #590