Signing PDF documents is simple but ensuring that your signed PDFs are trusted out of the box is complex. Getting an alert notification on opening a digitally signed PDF file is both confusing and disturbing. The most common cause of PDF not being trusted in Adobe Acrobat Reader is its failing to trust the signing certificate. This is where AATL from Adobe helps. Adobe launched their Adobe Acrobat Trusted List program (AATL) allowing PDF digital signatures to be trusted requiring no manual client side configurations. AATL improves the overall user’s experience by trusting your PDF digital signatures.
Administrators may employ cumbersome options to ensure their clients see a trusted green tick mark when they open digitally signed PDFs. Some of these are:
- Manually install the Root CA certificates and configuring Adobe Acrobat to use Windows Keystore (Adobe Reader > hit Ctrl + K, Signature > Verification)
- Manually add Root CA inside Adobe Acrobat Trusted Certificates List (Adobe Reader > hit Ctrl + K, Signature > Identity and Trusted Certificates)
Both of these options are workable but only helpful in closed environments where your or administrator can easily guide users or control machines. All of these options will fail, if user’s are outside your network as persuading them to trust your internally hosted Root CA will not work.
A PDF signed with an AATL trusted digital certificate looks the same as signed with a non-AATL certificate as there are no change in the PDF contents. The two noticeable changes are:
- Digital signature is marked as verified/trusted at the top bar
- Mentions source of Trust obtained from Adobe Approved Trust List (AATL)
Your clients will not see digital signature verification failures and start trusting your signed content more.
Codegic is a one stop shop which helps clients from choosing the best AATL provider and developing ETSI’s PAdES complaint PDF signing software. Some of the salient features are:
- Standard based: We create PAdES digital signatures (PAdES-BES, PAdES-T or PAdES-LTV)
- Trust Oriented: Integrate your existing PDF signing solution with top AATL providers
- Cloud based: Develop and integrate with top Cloud based HSM providers. This includes: Google Cloud HSM, Azure Key Vault, Amazon Cloud HSM
- Reduced Cost: We have relationships with the best AATL Provider out of 60+ known AATL providers
- Guidance: Support and & training is provided from key generation, certificate issuance and integration
- Fully Trusted: Ensure the signed PDF complies with PAdES standard and also trusted (out of the box) in Adobe Acrobat Reader DC
To Learn more about PDF Signing click see How PDF Signing works.