Configuring Stormshield Data Sign

Stormshield Data Sign makes it possible to electronically sign documents and guarantee the authenticity of signers’ identities and the integrity of what these files contain.

For more information, refer to Signing files in the SDS Enterprise Advanced user guide.

To configure file signing:

  • Go to Policies > Features > Sign, and enable the settings of your choice.

Properties

Select the file extension that will be used to identify the new file after it is signed. The original file name will be kept; only the file extension is different.

The possible extensions are Stormshield Data sign (.p7f) or S/MIME (.p7m).

You are advised to select the .p7f file extension to avoid conflict with any other tools that use .p7m files.

When you select the .p7f file extension:

  • The icon shown below will be displayed over the right top bottom of the original file icon in the explorer.

  • The file cannot be read by any person using a different electronic signature tool.

Use the .p7m format to validate and send files to peers who do not use Stormshield Data Sign, but other RFC 2630-compliant software.

Types of signature

Select the types of signature you wish to allow.

For more information, refer to Signing files .

Active content management

Allow or prohibit the signing of files that contain macros or dynamic fields. This is important because the layout or contents of such files can be subsequently modified after they are signed, therefore casting doubt on their integrity.

Signature process Choose whether to force the user to always display the document before signing.
Active content detection in PDF files

Choose whether to inform the user when macros are detected in the contents of a PDF file.

Active content detection in Microsoft Word files

Choose whether to inform the user when macros or dynamic fields are detected in the contents of a Microsoft Word file.