About DRM

	Digital Product Rights Manager (RM1) is an add-on product and enables companies to secure and control their Intellectual Property (IP) when exchanging documents. RM1 provides the Digital Rights Management (DRM) capability based on AD Microsoft Rights Management Services (RMS). This capability lets the creator apply and enforce digital rights on documents through the DRM settings. To do so, the creator defines a list of users with their associated rights to allow or prevent them from performing operations such as open, save, or collaborate. Each user can then display the rights she/he has been assigned for each protected document through `File > Document Properties`. Below are detailed the basic concepts you need to be familiar with: DRM Windows Rights Management Services (RMS) Active Directory Federation Services Publishing License User License Clear File/Cipher File Supported Formats
	DRM A technology that gives content providers control over the access and redistribution to their material. It provides this by encrypting the data with access rights as set by the owner of the data.
	Windows Rights Management Services (RMS) A Client/Server Microsoft Windows technology. By default, on servers: It is available but not installed on Windows Server 2003. It is included and can be activated on Windows Server 2008. On clients: It is available but not installed on Windows XP. The client must be downloaded. It is included in Vista. Companies can use this technology to encrypt confidential documentation, and through server-based policies, prevent the document from being decrypted except by certain people or groups, in certain places. Specific operations like saving, exporting or collaborating can be applied by system administrators, as well as by the creator of any piece of information.
	Active Directory Federation Services Active Directory Federation Services (AD FS) is a standards based Web Single Sign-On (SSO) service that enables federated identity by implementing claims based authentication across forests. It is part of Windows Server 2003 R2 and later releases of Microsoft's server Operating System as a server role. RM1 is full Active Directory Federation Services compliant: this RM1 version supports both AD-FS and AD-RMS trusts. This means that from an authentication point of view, multiple documents from different IP servers can be handled at the same time. This AD-FS feature provides a higher security level from an authentication point of view. In addition to this, you also have the ability to use the full offline feature which means that RM1 supports the disconnection from the network (all the necessary data is securely stored in local cache files): Cache AD Access for the used ID. Cache Main IP Server name. Systematic use of an offline access for all the AD-RMS certificates (Machine, GIC, CLC, and EUL).
	Publishing License The electronic envelope which contains the exhaustive list of users with their associated rights. From the RMS point of view, this contains on a protected form, the list of users with their associated applicative credentials.
	User License Once the access control is granted, the RMS server forwards to the allowed user the sub-part of the Publishing license that she/he may use. From the RMS point of view, this contains on a protected form,the applicative credentials associated to the dedicated user.
	Clear File/Cipher File A clear file is a file that is not DRM protected. A cipher file is a file that is DRM protected.
	Supported Formats The following formats are supported: CATPart CATProduct CATProcess CATAnalysis CATDrawing cgr 3D XML Note that: DRM is not supported for V4 file formats. External file formats included in the DRM encrypted data are not protected. For example, a .xls file included in a drawing representation could be edited by Excel and new data saved to the drawing representation.
	Recommendations DRM protected data must be used for information exchange purpose only. It is highly recommended to keep a clear version of your data.