|
|
|
|
|
|
ADSS (Advanced Digital Signature Services) Enterprise Server offers enhanced digital signature creation,
verification and time-stamping services for business applications
needing to trust documents and data. It ensures that the applications
have access to easy to use trust services and ADSS Server off-loads
the often forgotten overheads of authorisation decisions,
detailed policy definitions, auditing logging, billing and
other management tasks. ADSS Enterprise Server has been designed for internal
Enterprise use as well as External multi-party use and for
Managed Service Providers.
ADSS Server has been built to satisfy
a wide variety of business trust services, which have various
data and signature formatting requirements. The many options
are controlled through security policies that make ADSS Server
easy to use via any or all of its interface types:
|
|
|
|
|
|
Almost any business application can use ADSS Enterprise Server
with ease, the central policy driven controls ensure that applications
are able to easily use high level security services to sign,
counter-sign, timestamp and verify the following document and
data types:
|
|
|
 |
PDF Documents
|
|
|
Any file type (e.g. Word, Excel, AutoCAD, PDF, Project,
Visio, etc)
|
|
|
XML data
|
|
|
Web-form data
|
|
|
|
|
|
|
These document types can be signed, verified, validated and
also be historically verified at a future point in time. ADSS Server
even includes an in-built CA module so that there is no need
to deploy a CA or use an external CA service provider. Signing
options include: |
|
|
|
|
Corporate key signing –
for documents receipts, invoices, etc.
|
|
|
Multi-user signing using keys generated
and stored on the ADSS
Server
|
|
|
Multi-user signing on the client-side
using local keys and certificates
on smart cards or USB tokens |
|
|
|
|
|
|
The last point shows that using ADSS Enterprise Server and the ADSS GoSign
applet,
end-users can sign documents directly from the browser (using soft keys,
smart cards or USB tokens) without the need for installing
a local signing application on the desktop. The GlobalTrustFinder web-site
includes a live ADSS
GoSign client-side signing demonstration. Based on an example ‘purchase
order’ application, it uses ADSS Server with its optional
PDF Signing module to sign a
document. Click here to view this demonstration.
ADSS Server is modular product - only the module required need be licensed. This
provides a flexible yet cost-effective solution, with in built investment protection
since other modules can be added later to support future business needs. To make
it easy to find on Internet searches it is also branded under the following marketing
names PDF Signer Server, File Signer Server and XML Signer Server.
Details
ADSS Enterprise Service has been designed from ground-up for maximum
flexibility, security, scalability and usability – all essential requirements for
a centralised multi-application and multi-party trust server. The following diagram
illustrates the broad set of features at each layer of the architecture:
|
|
|
|
Basic Signatures |
PDF, XML DSig, S/MIME, PKCS#7, CMS, PCKS#1 |
|
Long-term standards |
CAdES (all important profiles), XAdES (all important profiles), PDF |
|
Signing Modes |
Server-side coporate or end user signatures, client-side signatures |
|
Wrapping Techniques |
Enveloping, Enveloped and Detached signatures |
|
Key Lengths |
1024-bit, 2048-bit, 4096-bit RSA, and with SHA-1 and SHA-2 algorithms |
|
Trust layer |
Use inbuilt CA, OCSP and TSA modules or back-end trust services providers |
|
Security layer |
Strong caller authentication, secure logs, optional dual control, database integrity,
alert system, usage reporting, HSM support |
|
Scalability layer |
J2EE application allowing scalability horizontally and vertically |
|
Interfaces |
On demand web services API, watched folder, email, desktop applications |
|
Hardware tokens |
SafeNet, nCipher, USB token and any other PKCS#11 compliant device |
|
Databases |
SQL Server, Oracle, PostgreSQL, MySQL (others available on request) |
|
Operating Systems |
Windows Server, Solaris, Linux (others available on request) |
|
|
|
Deployment Scenarios
The following are just some of the deployment scenarios possible,
to demonstrate the power and flexibility of the ADSS Enterprise Server:
|
|
|
|
|
|
Product Information
Click here to see product datasheets, solution sheets and other
information for all products.
Product Evaluation
Click here to evaluate products on trial version.
Related Products
|
|
Brand name for ADSS Server with PDF signing/verification modules |
|
XML Signer Server |
Brand name for ADSS Server with XML DSig modules |
|
File Signer Server |
Brand name for ADSS Server with PKCS#7/CMS modules |
|
|
Used in conjunction with ADSS Enterprise Server for zero footprint client-side signing |
|
ADSS Infrastructure Server |
Provides core infrastructure services of certificate issuance, validation, time
stamping and secure archiving |
|
PDF Sign&Seal (desktop) |
Desktop application for creating, signing, time stamping, encrypting and verifying
PDFs |
|
|
Desktop application for creating, signing, time stamping, encrypting and verifying
files or folders of any type using PKCS#7 signatures. |
|
|
|
|
|
|
|