Automatic WS-Security Digital Signatures on OSB?

Good Aftenoon.
Is it possible to create an OSB proxy service to "automatically" sign a clear-text SOAP request to a Business Service?.
The process flow should be:
Client sends clear-text request --> OSB Proxy digitally signs the message and route it --> Business Service comunicate with the back-end.
Thanks,
Charles.

Hi Charles,
You can tell OSB to do that. Use signing policy in Business Service and you should be good to go.
OSB can encrypt it easily, but i can't see how to digitally sign it.Signing is done on the similar lines of encryption. Check example "Example: Signing the Message Body and Headers" at below link -
http://download.oracle.com/docs/cd/E13159_01/osb/docs10gr3/security/message_level.html#wp1080559
Regards,
Anuj

Similar Messages

  • Securing Digital Signatures and none of that other stuff

    Hello.  I am new to getting help from highly knowledgeable people in this type of forum.  This will be my second question asked.  The first time response was quick, correct, and succinct.  I am grateful for your help and I thank you.  I will need to find out how to close out the thread I initiated wit the first question.  Now my second question will allow me to cut to the chase, (provided I learned correctly what my mentors told me when responding to my first question).  Here it is: I want to lock my digital signature to a PDF document without the use of a third party CA or without becoming a do it yourself CA.  From my perspective it would seem that these programs or services are far more that I need.  I simply need to secure, lock don my digital signature of PDF document that I send out to government agencies.  It’s a one way trip.  Copies of the documents are provided to members of my association, again a one way trip.  I need to have my digital signature integrated into the text of the document and secure as well as the PDF document itself.  That is all I want to do; no tracking, no secured return digital signatures, etc.  I prefer to by a add in or an easy to use software program, but if I absolutely have to, I can work with the “cloud”.  Can anybody point me in the right direction?   Eally need help.
    Thanks for your consideration and past assistance.
    HALO

    There are many different types of digital signatures. I use digital signatures that are self-signed. They cannot be verified by the people that receive them, but guarentee the documents haven't been changed since signed.
    This article might help: http://help.adobe.com/en_US/acrobat/X/standard/using/WS11dd809af63f0e1e-43e0464b12b4384d3b 6-8000.html
    As to your previous thread. We do not close threads usually as other people with similar issues may want to post or read the thread. You can go and mark the thread as solved.

  • Limiting users to 1 digital signature

    Hello all,
    Using Adobe Acrobat 9 Pro and Adobe Livecycle Designer 8.
    I have created several forms using Livecycle Designer 8 to be distributed internally.  I would like to add a Signature Field and looked into buying VeriSign signatures which i have been quoted $320 for, this is far to much to pay.  As the forms are for internal use only, is there a way that i can limit the user to creating only ONE id?
    Or if anyone has any other ideas on how to provide secure digital signatures without the price tag?
    Thanks in advance for any help.

    You can't prevent users from creating more than one digital ID, there are many tools\utilities available that can be used to create digital ID's (including Acrobat)
    You could use the "seed value" feature when creating the signature field with Adobe Designer.  You can restrict which certificates (digital id's) can be used to sign the PDF (see attached SigningCertificates.gif).  The problem in you case (when using self-signed certificates) would be that you would have to identify each and every one of your user's certificates in the signature field configuration.
    You might want to look into setting up your own certificate server (there are open source servers available), this way you can issue the digital ids (certificates) to your users.  This also means that you can specify in the signature field configuration that only certificates issued by a specific certificate server can be used to sign the document (see attached IssuersAndPolicies.gif).
    Hope this helps.
    Steve

  • Replacing the Acrobat logo in digital signatures

    I am using Adobe Acrobat X Pro 10.1.8 on a Macintosh.  When I create a digital signature, there is a checkbox option in the "Configure Signature Appearance" window (under Acrobat->Preferences->Security->Digital Signatures) which, when checked, displays the Acrobat logo in my digital signatures.  Is there a way I can replace that logo with my corporate logo, made suitably transparent in a PDF like I have for a scanned version of my wet-ink signature?  In this way, I can create various versions of my signature for personal use (with just my transparent scanned wet-ink signature) and corporate use (with both my transparent scanned wet-ink signature on the left and my transparent scanned corporate logo on the right and other information like reason for signature, location, contact email, etc.).  After all, since the document is a PDF, it's already obvious it's Adobe Acrobat.  What isn't obvious is who signed it and who the signer is affiliated with (i.e., me and my company, not Adobe).

    I don't have an answer for you, but something to think about. When working with signatures, it's very important (in my view) to move away from judging ANYTHING by looking at the page. That's the old "wet signature" way.  A PDF page could have any icon, name, signature, or convincing text. What really matters is validating the signature and confirming it really is signed by the trusted authority you hope it is. Anything fancy on the page just distracts from that.

  • Digital Signatures and Certificate Authorities

    My users are wanting a way to sign PDF documents, and have them verified for internal and external receipients. We are currently using Acrobat 9 Standard. I know you can create signatures and 'self-sign' them, but those are only trusted if the receipient manually adds them to their 'Trusted' people.
    From my reading, it looks like we need to purchase a third party code signing certificate, such as the following: http://www.verisign.com/code-signing/
    My question is, what do we need to do to make that certificate availbable to my users to use for their signatures? I'm having a hard time finding documentation on this part.

    Here's a good starting point for understanding how CDS and AATL work with Acrobat and Reader: http://learn.adobe.com/wiki/display/security/Digital+Signatures+101
    Another option you should look into is Adobe EchoSign: http://blogs.adobe.com/acrobat/tag/echosign

  • Setting up a Digital Signature

    Hi all.  I have Adobe Acrobat X, and I'm trying to set up a digital signature with a graphic.  The graphic is actually a signature that is scanned. The problem is when I create the digital signature graphic, the graphic signature is very small and almost unreadable. 
    How can I make it so the graphic signature is larger?
    Thanks

    Moved to Acrobat Security & Digital Signatures forum: http://forums.adobe.com/community/acrobat/security_%26_digital_signatures?view=discussions

  • Valid Digital Signatures

    I would like to know of a way to automatically validate a Digital Signature that comes from the same certificate store as me.
    Say the root of my certificate is: MyCompanyCA
    If someone sends me a signed document the block comes in as a question mark instead of the green checkmark.
    I have to manually go and trust the certificate from that person to make it green. Is there any way I can just trust ALL certificates from MyCompanyCA?
    So if a new person sends a signed, valid document, it will contain a green checkmark instead of a question mark.
    I am running Acrobat 8.
    Thank you.

    Hi,
    The short answer to your question is yes.
    If you make the root CA certificate (or any of the intermediate CA certificates) the trust anchor, then all signatures created using digital IDs that chain up to that certificate will be valid (providing all other requirements are met). You can either add the root CA to the Acrobat/Reader Manage Trusted Identities list, or you can add them to the Windows Certificate Store, but in that later case you also need to set the preference to accept trust from Windows (and obviously, this isn't available on Mac or Linux).
    Steve

  • Digital signature verbiage

    How do I remove the digital signature verbage to the right of the signature but leave the signature.  In other words, I just want the signature there and nothing else.

    When you set up a digital signature appearance you can customize what appears. Exactly how you do this depends on what version of Acrobat/Reader you're using:
    Acrobat 9: Edit > Preferences > Security > Digital Signatures > Appearance > Edit
    Acrobat/Reader 11: Edit > Preferences > Signatures > Digital Signatures > Creation & Appearance > More > Appearances > Edit
    Once you've set up an appearance, you can select it from the list when signing.

  • Digital signature properties field name via javascript

    I am creating secure digital signature fields with random number names with similar prefixes.  The idea is to have multiple fields available in a single regular PDF (non portfolio).  So on each sheet we sign 3 fields.  One field is a name, another is a date and the last is a release.  This goes on every sheet and the PDF would contain up to 1500 pages.  Adding a random number to the end of each field name was the only way to make this work....now I have a problem of finding the particular fields for my script to sign the sheets. 
    I am guessing that there must be some way to identify how many fields I have on a sheet and return the name of all the fields.  If I can get the name of all the fields I can use that info to run my script to place the digital signature appearances in their correct field.  My field names all begin with either 'Date', 'Sig' or 'RFC' followed by a random number to avoid duplicate fields.
    So in a nut shell, how can I find the names of the fields via JavaScript?
    Thanks you!

    Are you able to add another prefix, specifically using hierarchical field names that include the page number? For example, on page one the fields could be named:
    P1.Date[random number goes here]
    P1.Sig[random number goes here]
    P1.RFC[random number goes here]
    You can then get all of the P1 fields like this:
    var fields = getField("P1");
    and then use the getArray method to get an array of the individual field references and iterate through the array.
    Otherwise, you can loop through the fields and look at the page property of each to determine which ones are on which pages. You can use the getNthFieldName document method and numFields document property to do this.

  • Can I create an automatic custom file save name/path once I click digital signature field?

    Hi,
    What I'm trying to do is once I click on a digital signature and I add my digital signature it requires me to sign it.  I want to know if there's a workaround to where once I click it it will automatically save to a file name based on a field and to a pre-determined directory?  Say, if I want it to save to a users desktop.  My supervisor is wanting to eliminate his employees having to change the file name to the format he wants and selecting the save location and make it automatic for everyone to have it saved at the same location on their computers. 
    Will likely have everyone in the office create a folder named 'Leave Requests'.  This will be the location on the desktop where all these automatically saved files would go.  The custom file name would be Emp_Name + "Leave Request" + Date where Emp_Name and Date are 2 variables that are user inputted field values on the form.  I have looked around but there doesn't seem to be too much on this one.  I do realize I can't create a custom 'Save As' location and path name but I have read a little about creating a custom automatic save feature and wanted to know if I could implement that.  Here is the information I read about:
    http://acrobatusers.com/tutorials/print/how-save-pdf-acrobat-javascript
    I appreciate all help any of you can give me in this matter.  Thanks!!!

    This tutorial is great!
    http://mydesignpad.com/create-a-complex-html-email-signature-for-mail-on-mac-os- x-10-9-mavericks

  • Security Issues: SSL on SOAP Adapter and Digital Signature in BPM

    Hi there,
    we're developing a R/3-XI-3rd Party Application scenario, where the XI/3rd Party communication is based on a webservice (SOAP adapter with SSL). Also, the messages in the XI/3rd Party communication must be digitally signed. I've got some questions on both subjects.
    1. About the SSL. I've started to investigate what will be necessary to enable the HTTPS option under SOAP Adapter (it's not enabled now). If I'm not correct, all I need to do is:
    - check whether the SAP Java Crypto Lib is installed in the Web AS;
    - generate the certificate request in the Visual Administrator and, after acquiring the certificate, store it with the KeyStorage option.
    Is that right?
    I'm considering that I won't need to use SSL in the ABAP Web AS, only the J2EE Java Engine (since the SOAP Adapter is based on J2EE).
    2. About the digital signature. As a first solution, we had decided on accessing a webservice based on another machine running a signature application. We'd send the unsigned XML and receive a signed XML. But since that needed to be done into the BPM, I thought that using a piece of Java code in a mapping would suit it better.
    But to be able to use the hashing/encrypting/encoding algorithms, which library needs to be installed? Is it the same SAP Java Crypto Lib that was installed for the SSL enabling?
    Thanks in advance!

    Hello Henrique,
    1. You're right. For detailed instructions please have a look at the online help: http://help.sap.com/nw04 - Security - Network and Transport Layer Security - Transport Layer Security on the SAP J2EE Engine
    2. The SOAP adapter supports security profiles. Please have a look at the online docu http://help.sap.com/nw04 -Process Integration - SAP Exchange Infrastructure - Runtime - Connectivty - Adapters - SOPA Adapter - Configuring the Sender SOAP adapter and from the link under Security Parameters to the Sender Agreement. You'll find some additional information in the following document: http://service.sap.com/~sapdownload/011000358700002767992005E/HowToMLSXI30_02_final.pdf
    Rgds.,
    Andreas

  • Adobe Acrobat - Digital Signatures Security

    Hi,
    The business I am working for is making a push for online fill in forms for simplicity and less paperwork. At the moment they are using word docs with fill in sections that are terrible to deal with and still require you to print them out to sign it.
    I have developed a PDF fill in form using Adobe LiveCycle that uses digital signatures. My only worry is how the digital signatures are created. It seems it is fairly easy to create a digital signature for someone else and use it without it being authenticated.
    I have done some reading around and it seems to suggest that you are able to intergrate windows user accounts with adobe security somehow, but I am unable to find how to do this. I also don't have access to any of the windows security certificates so I will need to pass on information to the external IT company that manages it for them to do.
    So, more specific question: How do I intergrate Adobe Acrobat signatures/security with windows user accounts so that only a specific list of users are able to sign forms.
    Or if there is a better way of doing this let me know.
    Thanks

    Hi,
    You don't need to do anything. If the user has loaded their digital ID into the Windows Certificate Store (or the Mac Keychain) then Acrobat (and when I say Acrobat I mean both Acrobat & Reader) will pick up the digital ID and make it available at signing time in the Sign Document dialog, "Sign as" drop-down menu.
    Steve

  • Digital Signatures and Security Policies

    Is there a way to combine a digital signature and a Security Policy. We have a need to digitally sign a document, but not allow that signature to be removed and to not allow any further editing of the document?

    Hello Francesco,
    I want to  generate a digital signature (PKCS#7,XML) using SAP SSF API as explained in
    http://help.sap.com/saphelp_nw04/helpdata/en/4f/65c3b32107964996a56e4165077e24/content.htm and in Amol Joshi's reply in
    Digital Signatures and Document Encryption api
    so my question  is From which PI/XI version and its SPS this SAP SSF LIBRARY is supported ?
    Kind Regards,
    Kubra fatima.

  • Securing pdf document with digital signatures

    I have a pdf document that has digital signatures. We need to secure it so no one who has input their digital signature can go back in later, delete their signature and then 're-sign' it. But I get an error message telling me I can't secure the document because it has digital signatures.
    Is there any way to secure the document so only I can secure/unsecure it after digital signatures have been input?
    Thanks!

    You don't need to use document encryption to lock the PDF file. You can set the signature field properties to mark all fields as read-only at signature creation. Try this:
    Select the Tools > Toolbars > Advanced Editing menu item
    Click the Select Object tool on the Advanced editing toolbar (it's the arrow icon)
    Right mouse click on the signature field and select Properties from the pop-up menu
    Select the Signed tab on the Digital Signature Properties dialog
    Select the Mark as read-only radio button and All fields from the corresponding drop-down list
    Click the Close button on the Digital Signature Properties dialog
    Select the File > Save As menu item and save a copy (in other words, leave the original copy as is in case you find you locked yourself out of the document, that way you'll have a fall-back recovery option)
    Good luck,
    Steve

  • QM Digital Signature SAP System's Personal Security Environments (PSEs)

    Hi All,
    We want to introduce the Digital Signatures for Quality Management Result Recording and Usage Decision. (Transaction Codes :QE01,QE02,QA11,QA12).
    We have made some studies.Still we need some suggessions to achieve the final goal.
    ==============================================================
    1.
    SSF settings for system signature
    Check and if necessary maintain the standard settings. To do this, execute the following activities in the IMG under SAP Web Application Server -> System Administration -> Digital Signature:
    • Define application-dependent parameters for SSF functions
    • Define security settings for the system
    The above IMG Structure
    SAP Web Application Server -> System Administration -> Digital Signature:
    Is not appearing in ECC6.0. Where we can find the above structure in ECC6.0?
    2. SAP Netweaver
    --> Application Server
    --> System Administration
    -> Maintain the Public Key information for the system
    --> Maintaining the system security information.
    This IMG Actvity "Maintaining the System Security information"
    Environment.
    We have to create new “SAP System's Personal Security Environments (PSEs)” ?
    What is the procedure to create SAP System's Personal Security Environments (PSEs) ?
    We are unable to proceed.
    Plz. help.
    With Best Regards,
    Raghu Sharma.

    Dear All,
    Basis involment is very much required.
    Hence we are closing this issue.
    With Best Regards,
    Raghu Sharma

Maybe you are looking for