Digitally signing document templates

A Rational® Publishing Engine document template can be digitally signed using a private key that is available in the key store. Digital signatures enable confident sharing of templates from trusted sources.

About this task

An administrator or template designer should use their organization private key and public key pair or generate a key pair and store them in a key store. The public key should be shared with all the users who generate the document so that the template's digital signature can be verified.
Note: The sample templates provided with Rational Publishing Engine are digitally signed. Any modifications to these templates will invalidate the digital signature.

Procedure

  1. In the Document Studio application, click Window > Preferences > RPE > Document Design > Digital Signature.
  2. Provide key store details to digitally sign a document template:
    1. Path to key store: The location of the key store that Rational Publishing Engine looks in to digitally sign a document template. The key store must contain private keys for digitally signing templates.
    2. Key store password: The password to read the keys from the key store.
    3. Key store type: The type of the key store.
    4. Private key alias name: The private key that is used from the key store to digitally sign a template.
    5. Private key password for alias: The password for reading the private key from the key store to digitally sign a template for the selected private key alias.
  3. Click Apply and OK.
  4. In Document Studio, click Template > Digitally Sign Template. If you did not provide your private key details in the preferences, a dialog provides a list of all available private keys available. Select the private key and enter the password.

Results

The template is digitally signed. If you edit the template after the template is signed, the digital signature is invalidated. You must digitally sign the template again after you complete editing the template.

Feedback