Learn about adding security to your digital IDs in Adobe Acrobat.
Protecting digital IDs can prevent unauthorized use of private keys to sign or decrypt confidential documents. When private keys are stored on hardware tokens, smart cards, and other devices that are password or PIN-protected, it’s important to use a strong password or PIN.
Best practices for creating passwords
- Use eight or more characters.
- Mix uppercase and lowercase letters with numbers and special characters.
- Choose a password that is difficult to guess but easy to remember.
- Avoid using real words to make your password harder to guess.
- Change your password regularly.
- Swritten passwords
When storing private keys in P12/PFX files, use a strong password and set appropriate timeout options. Additionally, always configure signing keys to require password authentication, and create backup copies of any keys used for decryption.
The protection mechanisms for private keys in the Windows certificate store vary by provider. Contact the provider for backup and protection guidelines. Always use the strongest available authentication mechanism.
Lost or stolen digital IDs
If a digital ID issued by a certificate authority is lost or stolen, discontinue use of your private key, notify the certificate authority immediately, and request the revocation of your certificate. If a self-issued digital ID is lost or stolen, destroy the private key and notify anyone you sent the corresponding public key or certificate to, as your digital signature could potentially be misused.
