Trading Networks supports x.509v3 certificates for digitally signing documents that you, the owner of the certificates, want to send to trading partners. To digitally sign a document, you invoke the wm.tn.doc:sign built-in service.

When you invoke this service, Trading Networks locates the sender and receiver to retrieve the correct signed certificate from the Trading Networks database. The owner of the certificate is the sender, and the receiver is the trading partner. You can set up Trading Networks to use different certificates for different partners.

You can also specify a default Sign certificate by providing the certificate information in the owner’s profile. If a default Sign certificate is defined, then Trading Networks uses this default Sign certificate when a partner-specific Sign certificate is not available.

When you sign a document to send to a partner, Trading Networks looks at your profile to see if it contains the specific private key to use to sign the document. If Trading Networks finds a set of certificates to use for that specific receiver, it uses the appropriate certificate in that set. If Trading Networks does not find a set of certificates to use for that specific receiver, it uses the default set of certificates specified in your profile.