Recently a vulnerability in the implementation of TLS protocol has been found called ROBOT (Return Of Bleichenbacher's Oracle Threat). This is the return of a 19-year-old vulnerability that allows RSA decryption and signing operations with the private key of a TLS server.
The ADSS Connector for SharePoint has always provided tight integration with the Microsoft SharePoint portal and ADSS Server Go>Sign Service. This allows enterprise users to "click and sign" on a document in SharePoint. The internal process first uploads the target document to ADSS Server, (converting the document to PDF/A if required) and then shows it to the user using the ADSS Go>Sign Viewer.
The ADSS Server Signing Service can create PDF digital signatures or all common ETSI PAdES formats (PAdES Part 2,3,4) and it can also create and apply visible signature appearances where requested. While other digital signature approaches have quite limited signature appearance functionality, the ADSS Server Signing Service includes a sophisticated and yet easy to use signature appearance designer. This enables administrators to create visible signatures that are optimised for their business purpose.
Hardware Security Modules (HSMs) are a fundamental part of a high trust solution. They offer fast, secure processing of private keys, which ensures that keys cannot be created, copied, changed or deleted without appropriate permission or stolen without being noticed. They also off-load the processing cost of digital signatures for high performance systems such as time stamping servers or certificate validation servers.
ADSS Server v4.8+ supports clever integration with Active Directory and other LDAP compliant directories to enable seamless and automatic management of each user’s digital certificate, including generation, revocation and re-issuance.