AATL is an acronym for Adobe Approved Trusted List, which is a program that allows users to create digital signatures that are instantly and automatically trusted, whenever the signed document is opened in an Adobe product. With AATL certificates, the individual(s) viewing the document is not required to manually upload the certificate root chain locally on the device where the document is viewed. Using AATL certificates for digital signing allows anyone to validate a digital signature, on any device, at any time!
AATL enabled certificates can only be issued by Certification Authorities (CA) members of Adobe AATL via a commercial publicly trusted root. IdenTrust CA is a member certified under the AATL program (see Current AATL Members List).
AATL certificates must be issued on password protected hardware devices that are FIPS 142-2 L2+ compliant, such as HID Global USB tokens and HID Global Smart cards. This requirement facilitates two-factor authentication (2FA) and also provides additional security, as the certificate private key cannot be exported from the hardware device; thereby eliminating the potential of key compromise by bad actors.
Publicly Trusted Certificates
IdenTrust offers the following AATL enabled certificates issued under the IdenTrust Commercial CA Public Root:
Buy Now TrustID Medium Assurance Unaffiliated Hardware (can be used to transact your personal business)
Buy Now TrustID Business Representative Hardware (can be used to transact business on behalf of your affiliated company)
Government Trusted Certificates
IdenTrust also offers AATL enabled certificates issued under the IdenTrust Global Common Root (IGC) which is cross-certified with the U.S. Federal Bridge Public Key Infrastructure Policy Authority (FPKIPA):
Buy Now IGC Medium Assurance Affiliated Hardware (can be used to transact business on behalf of your affiliated company)
The following certificates are AATL enabled certificates under the IdenTrust Global Common Root (IGC) which is cross-certified with the the SAFE-BioPharma Digital Identity Root:
Buy Now IGC SAFE-BioPharma Medium Assurance Hardware (can be used to transact business on behalf of your affiliated company)
IdenTrust also offers a free of charge Timestamping Service that adds long-term integrity and non-repudiation validation for up to 10 years after the PDF signing certificate has expired or has been revoked. Learn More.
If purchasing a large volume of certificates for your company, please contact Sales@identrust.com, as further discounts may apply.
Please note: ONLY THE SUBSCRIBER OF THE CERTIFICATE SHOULD HAVE EXCLUSIVE USE - THE DIGITAL CERTIFICATE IS YOUR FORM OF IDENTIFICATION, SIMILAR TO YOUR PASSPORT OR DRIVERS LICENSE. Under the Certificate Policies governing the issuance and use of certificates offered by IdenTrust, it is our responsibility as an Authorized Certification Authority to revoke the certificate in a case of loss or disclosure of the private key (Password) to anyone other than the subscriber.