Posts in Category "Electronic Signatures, Digital Signatures & PKI"

Adobe Acrobat and Reader 10.1 Released, Feature New Security and Signature Enhancements

Just last night, we announced the availability of updates to both Adobe Acrobat and Reader, bringing them up to version 10.1.  Along with a significant list of vulnerability mitigations, these updates also bring with them substantial changes to the secure operation of Acrobat on Windows, and to the digital signature functionality across platforms.

First, Acrobat 10.1 on Windows now features the same Protected Mode operation as Adobe Reader X, protecting users from malicious PDFs.  Additional information on Acrobat’s implementation of sandboxing is available on the Adobe Secure Software Engineering Team’s (ASSET) blog.  For those savvy in digital signatures, note that Protected Mode (on both Acrobat and Reader) may impair the installation of PKCS#11-based tokens.  Refer to the simple instructions here for a workaround.

And if you’re like me and love the nitty-gritty details of digital signatures, you’ll probably appreciate the other signature-specific changes in 10.1…

Continue reading…

Update: FIPS Validation Certificates for Acrobat/Reader X and LiveCycle ES2.5

Version X of Adobe Acrobat and Adobe Reader include the RSA BSAFE Crypto-C ME 3.0.0.1 encryption module with FIPS 140-2 validation certificate #1092. To enable FIPS mode in Acrobat and Reader X and restrict document encryption and digital signatures to the FIPS approved algorithms (AES/RSA/SHA) in this library, please refer to Section 6.1.11 of the Acrobat Digital Signature Admin Guide.

Adobe LiveCycle ES2 and ES2.5 include the RSA BSAFE Crypto-J 3.5 encryption module with FIPS 140-2 validation certificate #590. FIPS mode is configured in the product installer.

Information on FIPS compliance in Acrobat and Reader 9….see this post.

Trust, Enhanced: More updates to the Adobe Approved Trust List

Today, Adobe pushed out yet another update to its certificate trust program implemented in Adobe Reader and Acrobat.  The AATL program, launched in 2009, makes it easier for users to view and rely on digitally signed PDFs by automatically displaying a green checkmark for those signature credentials which meet higher assurance requirements when opened in Reader and Acrobat 9 and X.

The update today included the Columbian A.C. Raiz Certicamara S. A. root certificate for Acrobat and Reader X.

Continue reading…

Trust us: Trust in Electronic Signatures Revisited

Last Friday, one of our colleagues James Lockman published a great blog entry on creating digital IDs and signatures in Acrobat X, and ways in which to establish trust in those signatures.

This is a thorough, updated companion piece to three blog entries we published back in 2008 on trust–an issue which is still critical to understand when considering electronic signatures to reduce costs and expedite previously paper-based workflows:

Sign up now for the E-Signatures 2010 Conference!

With this year being the tenth year of the ESIGN Act’s enactment, there’s been lots of activity around electronic signatures, their adoption, and the key challenges that face this exciting class of technology solutions.  To cap that off, the Electronic Signatures and Records Association (ESRA) has recently announced the details for their annual conference, coming this November 6-7 in Washington, DC.

The agenda for the nearly two day event is jam-packed with compelling content and speakers, covering both real-world implementation stories as well as guidance and advice for navigating this nascent field in North America and around the world.  Among the presenters is US District Magistrate Judge John Facciola, who was the first to digitally sign a judicial order, as well as a number of other key industry, legal, and government personalities, all of whom have great stories to tell about the progress of electronic signatures and the benefits they bring.

Lower registration rates are in effect until October 6th, so be sure to register now for this event!  For more details, view the ESRA 2010 Announcement, Registration Form or check out the website here.

We’ll see you there!

Happy Birthday, ESIGN!!

On Wednesday, don’t be concerned/scared/shocked if you see your sales people looking somewhat calmer, your legal counsel winces a little less when you crack a lawyer joke, your chief risk officer smiles at you, and your controller pulls you over and eagerly points to the latest revenue figures.

Why? June 30th is the tenth anniversary of the US federal law that made their lives easier by putting electronic signatures on equal footing with wet ink! That’s right: 10 years ago tomorrow, President Bill Clinton digitally signed into law the ESIGN Act (eSignAct.pdf).

How is this important? The electronic signatures legalized with the ESIGN Act produce dramatic, real-world benefits for Adobe’s customers.

Continue reading…

Just Unveiled: Adobe eSignatures – Making it Easier than Ever to Sign Electronic Documents

Signatures are utterly ubiquitous today…so much so, that we don’t even recognize how often and in how many different ways we are signing off on things. Of course, we’re all well-aware when we’re signing a legal document in person, like a mortgage or rental agreement. But we’re also assenting to a purchase when we chicken-scratch our signature on grocery store point-of-sale terminals.  (OK, that’s my chicken scratch.)  Did you know we’re also signing and assenting to a contract when we install software, or agree to privacy terms on a website, by clicking an ‘I agree’ button?  

The truth is, there are many different ways in which we can express our intent.  In the paper world, some agreements require the signatures of multiple parties.  Others, by tradition, necessitate the signer use dozens of pens to sign one name!  Yet others require the use of specially designed stamps.  Different types of signatures for different types of transactions.

These same variations carry over into the electronic realm, based on
necessity, expediency, cost, regulations, and local and national laws.

We’ve explained in this blog what electronic signatures are and how they work.  Adobe eSignatures, launched last week, provides yet another option – a very convenient way to send documents out for electronic signature minus the cost of express delivery.

Continue reading…

SuisseID Launches in Switzerland – Adobe Approved Trust List Enables Trust for Several Providers

Last week, the Swiss government announced (English translation) the launch of the SuisseID, a program intended to provide citizens and business with access to high assurance identity credentials that can be used to access government and business services as well as digitally sign documents with legally binding signatures.

Two Members of the Adobe Approved Trust List (AATL), SwissSign and newly joined QuoVadis, are also key Providers in the SuisseID program.

Continue reading…

Now Live on Adobe TV: Members of Adobe’s Security Solutions Team!

Well, you’ve experienced us in print…now see us in these exciting, new moving pictures! Listen to John Landwehr and John B Harris discuss Adobe’s key information assurance capabilities and how they can help you achieve content-centric security with products that provide integrity, confidentiality, authentication and privacy.

Trust Marches Onward: Adobe Approved Trust List Welcomes Two New Members

Some of our savvy readers and users may have already noticed a dialog box asking them to download a “security settings update from Adobe Systems”:

sectysettingsupdate_shot.png

No, it’s not the latest patch.  In fact, by clicking Yes, Acrobat and Reader 9+ users are downloading an update to the Adobe Approved Trust List (AATL), a list of trusted digital certificates that provides users with better assurances that the digitally signed documents they are receiving can be trusted.  This is visible to document recipients as a green check mark or blue ribbon, depending on the type of digital signature.

In this update, four certificates, two each from Entrust and QuoVadis respectively, have been added to the AATL…

Continue reading…