PKI- Digital signature and doc cypher

Hello everybody, I have a problem and I need help please. This is my situation:
I would like to cypher a world document and add a digital signature. I want to use certificates to do so. That is why I have developed a PKi in order to get certificates to use digital signature and ASYMMETRIC encryption. I have to add that I am trying to assure
non repudiation, integrity and confidentiality of word documents.
Is there any way to do it? if so, how can i do it and what software application do you recommend? thanks!

As Elke explains and shows via that link, that informs you how to digitally sign a document.  However a digital signature only provides non-repudiation and integrity of a document, not confidentiality.  Symmetric Encryption is needed for that. 
You would not use Asymmetric encryption to bulk encrypt files, it would be too slow.
Unfortunately there is no easy way to symmetrically encrypt files with the tools available in modern Windows distributions.  Personally I would digitally sign the document, then use a tool like 7-Zip
to encrypt them with AES-256 and a passphrase, or to go one better than that use Symantec Encryption Desktop. Using the latter allows you to do encrypt either with a passphrase, or with
your targets PGP public key (that does of course assume they are also using PGP) so that only they can decrypt it with their private half.
Also signing an Office document (or PDF for that matter) with an internal PKI certificate is only valuable if the documents are internally distributed within the same organisation, or when the other organisation(s) trust your root CA certificate, otherwise
they will not be able to verify the signature (think of it like the error in your browser with the red X stating there is a problem with your certificate).
I'm not quite sure what your use case is, but if it's just for distributing internal documents then no problem.  Otherwise you'll have to get a document signing certificate from a vendor like
GlobalSign who have a trusted root certificate which ships with most operating systems so that anyone who receives the document can verify it.
D

Similar Messages

  • How to use Digital Signature and PKI in SharePoint Server 2013

    Dear Expert,
    My company will plan to use Digital Signature and PKI document in SharEPoint Server 2013.
    Can you guide me what's the concept and how to implement and develop?
    Please suggestion.
    BR,

    Hi BR,
    Based on your description, my understanding is that you want to use Digital Signature and PKI in SharePoint Server 2013.
    You can use digital signatures in forms ,then use these forms in you SharePoint site.
    In InfoPath form ,you can change the form to allow signature here: File>Info>Advanced form options >Digital Signatures .You can choose to sign the whole form or a field .
    https://social.technet.microsoft.com/Forums/en-US/0ed54d57-d67d-41cd-bd1b-9e5a4be10d0c/use-of-digital-signature-in-sharepoint-2010?forum=sharepointcustomizationprevious
    Or you can use any tools such as the ADSS Connector for SharePoint which allows enterprise users to "click and sign" on a document in SharePoint.
    http://www.ascertia.com/
    Thanks,
    Victoria
    Forum Support
    Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
    [email protected]
    Victoria Xia
    TechNet Community Support

  • Digital Signatures and APEX

    Has anyone had any success implimenting digital signatures (PKI) within APEX?
    Here is a brief synapsis of what we are looking to accomplish and realize that third-party hardware/software might be necessary. We require users to login using LDAP credentials. We want them to be able to generate documents (i.e. PDF, Word, or Excel) from our application data. We want the users to have the ability to Digitally Sign their documents. We will be issuing individual private keys & certificates and we are considering generating the documents as XML. We are still in requirements gathering, but wanted to explore any and all capabilities within APEX.
    Any thoughts? Thanks.

    Hello Francesco,
    I want to  generate a digital signature (PKCS#7,XML) using SAP SSF API as explained in
    http://help.sap.com/saphelp_nw04/helpdata/en/4f/65c3b32107964996a56e4165077e24/content.htm and in Amol Joshi's reply in
    Digital Signatures and Document Encryption api
    so my question  is From which PI/XI version and its SPS this SAP SSF LIBRARY is supported ?
    Kind Regards,
    Kubra fatima.

  • Configure the stamp ,Digital signature and water mark in DMS

    Hi...
    I want to configure the stamp ,Digital signature and water mark in for my client in DMS.
    Stamp:detaiils showing doc type, doc status,who has open, doc no,version,date and time
    Digital Sign:with respect to approval (system should ask user name and password while approvig)
    Water mark:for the status (Draft/approved)
    Can anybody guide me to do this?Please explan in details as i am doing it first time.
    In addition to do this what addition system requirement is needed?
    Regards,
    Sandip

    Hi Sandip,
    Please refer below links for required details
    For Redlining   Redlining
    Watermark      DMS Seal system watermarking solution
    Hope this will answer your query.
    Regards,
    Deepak Kori

  • Looking for "PDF Public-Key Digital Signature and Encryption Specification"

    Hi,
    i am looking for the following ("old") document:
    PDF Public-Key Digital Signature and Encryption Specification
    Originally i could be found here:
    http://partners.adobe.com/asn/developer/acrosdk/DOCS/ppk_pdfspec.pdf
    But not anymore. Does somebody of you still have it? Adobe today just offers the latest documents but i specifically need that older version.
    Or is there an archive i don't know of?
    Thanks for your help,
    ToM

    You can read the PDF 1.5 specification OR even ISO 32000-1 itself for that information. Each feature is "tagged" with the specific version in which it was introduced.
    Digital Signatures were first introduced in Acrobat 4 (PDF 1.3) and have seen various improvements which each version since.

  • Digital signatures and view document througt URL

    Hello together,
    We use status document and digital signatures workflow and we canu2019t use URL link to documents which have been approved. In browseru2019s window I see digital signatures information and error :u201DHTTP 404 the web page cannot be foundu201D.
    In transaction SOLAR01, SOLAR02 when, I display approved document, at first I see the windows with digital signatures information and then, after push enter - required document.
    If document in status u201Cin progressu201D we donu2019t have problem.
    Could you help me to resolve this problem or disable windows with signatures information?

    Hello Francesco,
    I want to  generate a digital signature (PKCS#7,XML) using SAP SSF API as explained in
    http://help.sap.com/saphelp_nw04/helpdata/en/4f/65c3b32107964996a56e4165077e24/content.htm and in Amol Joshi's reply in
    Digital Signatures and Document Encryption api
    so my question  is From which PI/XI version and its SPS this SAP SSF LIBRARY is supported ?
    Kind Regards,
    Kubra fatima.

  • Digital signatures and wet ink signatures

    HI all,
    I am in the process of converting our paper checklists into fillable pdf forms.  Everything is working well, but Im trying to get my head around digital signatures.
    Ideally I just want to click the signature part, choose a user from a list, enter the password and the 'wet ink' signature that is scanned in gets added to the form.
    So on my laptop I setup a new appearance for my signature, scanned my signature and added it to my digital signature.  Perfect.
    Problem is, I want to be able to use this on other computers.  I copied the digital signature .pfx file and imported it on that new computer, which worked, but it drops the 'wet ink' signature and appearance.
    It also appears that anyone can create a digital ID on my laptop and choose my wet ink signature appearance, and sign the document which makes it appear as if I have signed it.  I was hoping the wet ink signature was locked with the digital signature but it appears this isnt the case.
    Im trying to find the best way to store our signatures (we are all on a network), so that any user can use any computer and ideally lock the wet ink signature to the digital signature.
    Many thanks
    Chris

    It doesn't work for everyone, but if you are considering moving to the world of digital signatures, it's best to forget the signature appearance ("wet"). This is just a distraction to the actual signature, and it encourages a deeply flawed workflow: one where people look at the picture on the page rather than learning about digital signatures and how to verify them. Since digital signatures are (if done properly) unfakeable and (in some places) legally recognised, it is best to completely change workflow, rather than trying to give the illusion it is just an electronic version of a paper workflow.

  • Java SSF for Digital Signatures and Document Encryption

    Hello,
    I have read in "SAP Help - Java Development Manual" that there is a Java SSF library for Digital Signatures and Document Encryption API.
    http://help.sap.com/saphelp_nw04s/helpdata/en/4f/65c3b32107964996a56e4165077e24/frameset.htm
    I am trying to develop an example application in NWDS using Interfaces/classes (ISsfData, SsfDataXml...), but NWDS does not find this classes in any library.
    I have searched for Javadocs in NWDS plugins directory and this classes and interfaces should be in JAR com.sap.security.api.jar, but they aren't there.
    Our WAS version is: NW04s WAS 7.0 SP11 and he have downloaded Java Crypto Library (IAIK) and also SAP XML Toolkit.
    Does anyone know how to find or obtain this library?
    Thanks in advance,
    Jorge Linares

    Hello Francesco,
    I want to  generate a digital signature (PKCS#7,XML) using SAP SSF API as explained in
    http://help.sap.com/saphelp_nw04/helpdata/en/4f/65c3b32107964996a56e4165077e24/content.htm and in Amol Joshi's reply in
    Digital Signatures and Document Encryption api
    so my question  is From which PI/XI version and its SPS this SAP SSF LIBRARY is supported ?
    Kind Regards,
    Kubra fatima.

  • Digital Signature and SharePoint 2013

    Dear Expert,
    My company has a plan to do digital signature and sharepoint 2013. Now, we focus for internal use that I know use AD CS. and in near future we use for external use. We plan to buy 3rd party certificate.
    My question
    1. How to implement this solution? Please suggest
    2. If I implemented AD CS, can we use public certificate in near future.
    3. Can we use public certificate with SharePoint 2013?
    Thank you

    Hi,
    Based on your description, my understanding is that you want to use Digital Signature in SharePoint Server 2013.
    You can use digital signatures in forms ,then use these forms in you SharePoint site.
    In InfoPath form ,you can change the form to allow signature here: File>Info>Advanced form options >Digital Signatures .You can choose to sign the whole form or a field .
    https://social.technet.microsoft.com/Forums/en-US/0ed54d57-d67d-41cd-bd1b-9e5a4be10d0c/use-of-digital-signature-in-sharepoint-2010?forum=sharepointcustomizationprevious
    besides, here is a similar post, you can take a look at:
    http://sharepoint.stackexchange.com/questions/78058/custom-digital-signatures-or-hash-on-list-items
    For more information about implemented AD CS, refer to the following link:
    http://technet.microsoft.com/en-us/library/hh831574.aspx
    Best Regards,
    Lisa Chen    
    Forum Support
    Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
    [email protected]                                                   
    Lisa Chen
    TechNet Community Support

  • Digital Signatures and Encryption in Yosemite Mail

    After upgrading to Yosemite, I am having difficulty using the Mac Mail app to send digitally signed and encrypted email.
    Before the upgrade to Yosemite, I was able to send signed and encrypted emails using certificate/keys in my keychain using both the Mac Mail app and Microsoft Outlook 2011 for Mac.
    After upgrading, I am still able to send signed and encrypted message in Outlook, but the Mac Mail app gives the following error when I attempt to send a signed email:
    'You don’t have a trusted certificate in your keychain that matches the email address “XXXX@XXXX”. Without a certificate, you can’t sign messages sent from this address.'   (Actual name replaced)
    When I look at my certificates in my keychain, a certificate is available with "Usage: Digital Signature" that has the email address from the error message "XXXX@XXXX" with exact case in the RFC 822 Name.
    Another interesting piece of data that might help track this down is that when I first launch the Mac Mail application, the Mac Mail application is able to successfully decrypt emails that have been previously sent encrypted to me.  HOWEVER, after I attempt to send an email and get the "You don’t have a trusted certificate..." error message, these emails are no longer able to be decrypted.  I get the "Unable to decrypt message" header above the message and the content of the message is just a "smime.p7m".  If I close the mail application and restart it, these encrypted message are once again decrypt-able until I attempt to send a message.
    It almost seems like things are working until mail tries to access the keychain.
    I have attempted to delete my certificate and keys from my keychain and then adding those items again.
    I have attempted to close the mail application and reopen it.
    I have attempted to reboot my computer.

    1.  I want to confirm that this is still an issue for me in 10.10.1 and mail Version 8.1 (1993)
    2.  I have another data point.
    At my office I have wired networking and wireless networking available.  Primarily I utilize the wired networking for access to network drives, etc.
    When using the wired networking, I experience all the problems that have been catalogued in this thread.  Can't sign, can't encrypt, can't close the compose window after the mail program fails to find my certificate.
    However, when I switch to wireless networking before starting the mail application, digital signatures and encryption seem to work!  This is pretty weird behavior.  Make sure to restart mail if you were previously wired.
    Here are some theories:
    Something to do with OCSP?  When I am wired vs wireless I am on different ip subnets and subject to different firewall rule sets.  Perhaps OCSP is trying to determine the status of the certificate and failing? 
    Here are some things I have tested:
    I switched to a different official apple brand thunderbolt to ethernet adapter with no change in behavior
    I disabled wireless and disconnected my wired network.  So no network access at all.  Signatures and encryption work!  The message obviously does not send, but it appears in my outbox and I don't get the signature error.  When I reconnect my wired cable, the message sends successfully and appears as encrypted in my sent folder!
    I have attempted to disable OCSP by using "Keychain Access --> Preferences --> Certificates Tab --> OCSP (OFF) and CRL (OFF)" but this hasn't made a difference in the behavior of wired networking.
    Ran a TCPDUMP on traffic to the OCSP service but didn't see any traffic when I attempted to send a message and received the signature error
    I am pretty stumped on this.  This is very odd behavior
    Does anyone else experience this behavior?

  • Digital Signatures and Security Policies

    Is there a way to combine a digital signature and a Security Policy. We have a need to digitally sign a document, but not allow that signature to be removed and to not allow any further editing of the document?

    Hello Francesco,
    I want to  generate a digital signature (PKCS#7,XML) using SAP SSF API as explained in
    http://help.sap.com/saphelp_nw04/helpdata/en/4f/65c3b32107964996a56e4165077e24/content.htm and in Amol Joshi's reply in
    Digital Signatures and Document Encryption api
    so my question  is From which PI/XI version and its SPS this SAP SSF LIBRARY is supported ?
    Kind Regards,
    Kubra fatima.

  • Digital Signatures and Coldfusion

    I want to add a digital signature field (3 to be exact) to a PDF file that I
    generate via coldfusion (via the cfdocument tag), OR use a form built in livecycle that once it is signed by the first person, the only allowable changes to the form are the second and third digital signature.
    Any help would be appreciated as digital signatures are not handled in cfdocument as well (at all) as I had hoped.
    Thanks,
    Drew

    Hello Francesco,
    I want to  generate a digital signature (PKCS#7,XML) using SAP SSF API as explained in
    http://help.sap.com/saphelp_nw04/helpdata/en/4f/65c3b32107964996a56e4165077e24/content.htm and in Amol Joshi's reply in
    Digital Signatures and Document Encryption api
    so my question  is From which PI/XI version and its SPS this SAP SSF LIBRARY is supported ?
    Kind Regards,
    Kubra fatima.

  • Digital Signatures and Workshop Papers

    Guys,
    Also posted [here|http://www.sapfans.com/forums/viewtopic.php?f=7&t=317491]
    Has anyone used digital signatures in PM workshop papers?
    If so, how do we load the digital signatures, and what code is used to import them into the workshop papers
    Thanks in advance
    PeteA

    Hi Amber,
    The work is based on the finalization and imminent publication of the
    wsse Oasis spec. This is targeted for WLS 8.1 SP3, and you can contact
    our outstanding support organization, reference CR134931, for details.
    Regards,
    Bruce
    Amber Osterman wrote:
    >
    I recently attended the webinar on Web Services interoperability w/ .NET. The
    presenter mentioned that digital signatures and encryption did not work w/ Workshop
    8.1. Is it fixed in 8.1 SP2? Also, are there any interoperability issues w/
    NET and Workshop using digital signatures and encryption.

  • Digital Signatures and Encryption

    I recently attended the webinar on Web Services interoperability w/ .NET. The
    presenter mentioned that digital signatures and encryption did not work w/ Workshop
    8.1. Is it fixed in 8.1 SP2? Also, are there any interoperability issues w/
    .NET and Workshop using digital signatures and encryption.

    Hi Amber,
    The work is based on the finalization and imminent publication of the
    wsse Oasis spec. This is targeted for WLS 8.1 SP3, and you can contact
    our outstanding support organization, reference CR134931, for details.
    Regards,
    Bruce
    Amber Osterman wrote:
    >
    I recently attended the webinar on Web Services interoperability w/ .NET. The
    presenter mentioned that digital signatures and encryption did not work w/ Workshop
    8.1. Is it fixed in 8.1 SP2? Also, are there any interoperability issues w/
    NET and Workshop using digital signatures and encryption.

  • Digital Signatures and Document Encryption api

    Hello Expert,
    From which SAP NETWEAVER 7.0 SPS  Digital Signatures and Document Encryption api  is supported ?
    I found  Javadocs for  SAP NetWeaver 04 SPS15.Is this api supported from SPS 15  or prior to SPS 15   also?
    Regards,
    Kubra Fatima.

    Hello Francesco,
    I want to  generate a digital signature (PKCS#7,XML) using SAP SSF API as explained in
    http://help.sap.com/saphelp_nw04/helpdata/en/4f/65c3b32107964996a56e4165077e24/content.htm and in Amol Joshi's reply in
    Digital Signatures and Document Encryption api
    so my question  is From which PI/XI version and its SPS this SAP SSF LIBRARY is supported ?
    Kind Regards,
    Kubra fatima.

Maybe you are looking for