SafeNet, The Foundation of Information Security
 
 
Language: English English Japanese Chinese Chinese Spanish Portuguese
sample image
SafeNet Support
Customized support for our customers.

Luna Product Drivers for Adobe Products

Adobe® LiveCycle Document Security utilizes the security features of the SafeNet Luna SA to protect credentials for digitally signing and decrypting PDF files.

The Luna SA drivers are provided on the installation CD 'Luna SA Client Software Release 2.3', provided with the Luna SA.

To install credentials on the Luna SA use SafeNet's CMU (Certificate Management Utility). CMU is installed with the Luna SA client software.

Instructions for integrating Adobe® LiveCycle Document Security and the SafeNet Luna SA:

  • Install the Luna SA client software on the machine running LiveCycle Document Security.
  • Install or create credentials on the Luna SA using CMU.
    • Configure the LiveCycle Document Security Trust Manager Module by following the instructions in the document:
  • Installation and Configuration Guide, provided with LiveCycle Document Security.
    - To sign, certify or decrypt documents add an <hsmrecord/> entry for each credential to trust.xml. The 'slot' attribute value represents the partition on which the credentials are stored. If your client only has 1 partition assigned to it use slot="1". If you have more than one partition assigned to your client determine the slot number assigned to each partition using the ckdemo utility(option 12 - Token Info), provided with the Luna SA client software.
    - To validate documents signed or certified with the Luna SA add a <cerrecord/> entry for each trusted certificate and a <crl/> entry for each corresponding CRL file to trust.xml. Add the certificates and CRL files to the Trust Manger Module configuration.

Example entry in trust.xml for a credential installed on the Luna SA:

Win:
<credentials>
<hsmrecord alias="Identity1Cert" slot="1" dllpath="C:\Program Files\LunaSA\cryptoki.dll" sha1="6011bc76b6622370e06a175d34cd3287f1634122"/>
</credentials>

Unix:
<credentials>
<hsmrecord alias="Identity1Cert" slot="1" dllpath="/usr/lib/libCryptoki2.so" sha1="6011bc76b6622370e06a175d34cd3287f1634122"/>>
</credentials>

Additional steps for certificates tied to a root authority, including CDS (Certified Document Services) certificates:

  • Obtain the ICA (Intermediate Certification Authority) certificate in DER encoded x.509 format (.cer).
  • While configuring the Adobe® LiveCycle Document Security Trust Manager Module, place the ICA certificate in the 'certificates' directory.
  • Add an entry to trust.xml for the ICA certificate. There is no need to trust the certificate for specific operations. These steps will ensure that resulting signatures are properly chained to the root authority certificate.

Example entry in trust.xml for an ICA certificate:
<cerrecord cerFile="TestCDS_ICA.cer" TrustedFor=""/>

For more information on Adobe® LiveCycle Document Security, please visit the Adobe® LiveCycle Document Security home page on Adobe's Web site:
http://www.adobe.com/products/server/securityserver/main.html

Arrow Contact Us
Request Information
Technical Support
General Contact
Find a Partner
 
Related Links
     Company | Site Map | Privacy Statement | Contact Us | Send Feedback | Terms & Conditions of Sale
     © 2009 SafeNet Inc. All rights reserved. | Use of this website signifies your agreement to the Terms of Use.