EldoS | Feel safer!

Software components for data protection, secure storage and transfer

Archive Timestamp

Also by EldoS: BizCrypto
Components for BizTalk® and SQL Server® Integration Services that let you securely store and transfer information in your business automation solutions.
#5587
Posted: 03/24/2008 10:28:02
by Nuno Guedes (Basic support level)
Joined: 08/13/2007
Posts: 87

Hi,

When i sign a file with XADES-A i get the error "No TSP Client available." on this line:

Code
if (!XAdESVerifier.CheckTimestamp(XAdESVerifier.get_ArchiveTimestamps(i)))


I tried XADES-A with others formats, like XADES-T or XADES-X. On checking timestamps only Archive Timestamp return that error. I use the same TSPClient to create all the timestamps.

On signing i create the ArchiveTimestamp with the following code:

Code
xadesSigner.AddArchiveTimestamp(TSPClient);



thanks in advance
#5591
Posted: 03/24/2008 17:36:40
by Dmytro Bogatskyy (EldoS Corp.)

I am able to reproduce this bug and testing it now. The fix will be included in the next build.
Thank you
#10109
Posted: 05/21/2009 20:40:58
by Thanh Nguyen Trung (Priority Standard support level)
Joined: 09/12/2008
Posts: 73

Hi,

Could you tell me if this error has been fixed in SBB 7.0. I modified SBB7 Signer Sample with one mirror change:

XAdESSigner.XAdESForm = SBXMLAdES.Unit.XAdES_A;

TSPClient = new TElHTTPTSPClient();
HTTPClient = new TElHTTPSClient();
TSPClient.HTTPClient = HTTPClient;
TSPClient.URL = "http://timestamping.edelweb.fr/service/tsp";
TSPClient.HashAlgorithm = SBConstants.Unit.SB_ALGORITHM_DGST_SHA1;
if (XAdESSigner.XAdESForm == SBXMLAdES.Unit.XAdES_T)
{
XAdESSigner.TSPClient = TSPClient; //work well
}
else if (XAdESSigner.XAdESForm == SBXMLAdES.Unit.XAdES_A)
{
XAdESSigner.AddArchiveTimestamp(TSPClient); //not work, show an exeption "Object reference not set to an instance ...[/B]
}

XAdESSigner.IgnoreTimestampFailure = false;


A exception showed while saving document in XADES_A case.

Please also tell me if the above code is right to generate XADES_T or XADES_A?









Thanks
Thanh
#10123
Posted: 05/22/2009 04:02:40
by Dmytro Bogatskyy (EldoS Corp.)

Quote
Could you tell me if this error has been fixed in SBB 7.0. I modified SBB7 Signer Sample with one mirror change:

Yes, the sample works as expected. What SecureBlackbox version are you using?
Quote
Please also tell me if the above code is right to generate XADES_T or XADES_A?

Yes, it's ok. Of course XADES-A could/should have not only ArchiveTimestamp element.
#10127
Posted: 05/22/2009 05:03:31
by Thanh Nguyen Trung (Priority Standard support level)
Joined: 09/12/2008
Posts: 73

Hi,

I am using SB 7.0.

Quote
Yes, the sample works as expected


What did you mean? Do you mean that you tested my code in above post and the function AddArchiveTimestamp(TSPClient) worked well?

Thanks
Thanh
#10128
Posted: 05/22/2009 05:28:08
by Thanh Nguyen Trung (Priority Standard support level)
Joined: 09/12/2008
Posts: 73

As I tested,

if I use the following code, and it works
XAdESSigner.TSPClient = TSPClient; (1)
XAdESSigner.AddArchiveTimestamp(TSPClient);

However, there will be two timestamp elements will be created in <xades:UnsignedSignatureProperties>:
Firs One is <xades:SignatureTimeStamp>
and the rest:<xades:ArchiveTimeStamp>

I am not sure if the ouput signature is a correct XADES_A!

Please take a look at the attachment!


[ Download ]
#10131
Posted: 05/22/2009 09:51:43
by Dmytro Bogatskyy (EldoS Corp.)

Quote
Do you mean that you tested my code in above post and the function AddArchiveTimestamp(TSPClient) worked well?

Yes, it is added ArchiveTimeStamp element normally.
Quote
I am not sure if the ouput signature is a correct XADES_A

The structure of a XAdES-A built on a XAdES-X-L, by adding ArchiveTimeStamp element(s).
From "ETSI TS 101 903 V1.3.2" Specification in "B.3 Archival electronic signatures (XAdES-A)":
Quote
Archival signatures in accordance with the present document MUST incorporate CertificateValues, RevocationValues and one or more ArchiveTimeStamp unsigned properties. They MAY contain other properties.

But, AddArchiveTimestamp method doesn't and should not control addition of CertificateValues and RevocationValues elements.
Also by EldoS: CallbackRegistry
A component to monitor and control Windows registry access and create virtual registry keys.

Reply

Statistics

Topic viewed 4701 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!