EldoS | Feel safer!

Software components for data protection, secure storage and transfer

Validing XAdES-X-L without timestamp

Also by EldoS: CallbackProcess
A component to control process creation and termination in Windows and .NET applications.
#23341
Posted: 02/04/2013 06:27:08
by Goran Antic (Basic support level)
Joined: 12/26/2012
Posts: 2

Hi,

I've been working with adding signatures on XML documents and verifying them based on official XAdES standard, particularly regarding XAdES (basic), XAdES-T and XAdES-X-L. So far, I am able to successfully generate XAdES and XAdES-T profile, which I can inspect reading the xml code and comparing it to the standard. Verification is also in order.

I have some problems with XAdES-X-L though. First of all, adding tags <CertificatesValues>, <RevocationValues> and mandatory XAdES-X tags(which are important for X-L) but not adding tag <SignatureTimeStamp> (also mandatory), makes SBXMLAdES.Unit.XAdESFormToString(XAdESVerifier.XAdESForm) return "XAdES-X-T", where XAdESVerifier is an instance of TElXAdESVerifier added to TElXMLVerifier's member XAdESProcessor. I don't think this is allowed, it should have returned XAdES or at most XAdES Epes unless a timestamp is added with the signature. Is this a bug or am i missing something in the standard?
#23347
Posted: 02/04/2013 07:47:00
by Dmytro Bogatskyy (EldoS Corp.)

Thank you for contacting us.

If you check, for example 1.3.2 standard: http://uri.etsi.org/01903/v1.3.2/ts_101903v010302p.pdf then on page 59 (B.2) you can see that SignatureTimeStamp is optional for XAdES-X-L form. For example, it could be replaced with SigAndRefsTimeStamp.
#23349
Posted: 02/04/2013 09:17:29
by Goran Antic (Basic support level)
Joined: 12/26/2012
Posts: 2

Oh, i was reffering to this standard : http://www.w3.org/TR/XAdES/ where i can see a different story. It seems that I'd have to read it all again to ensure myself that the profile is valid. Thank you for the reference.
#23350
Posted: 02/04/2013 09:45:46
by Dmytro Bogatskyy (EldoS Corp.)

Quote
Oh, i was reffering to this standard : http://www.w3.org/TR/XAdES/

This document describes XAdES version 1.1.1
At the moment exists 4 versions: 1.1.1, 1.2.2, 1.3.2 and 1.4.1 (also known as 1.4.2, is extension to 1.3.2).
So, it depends on what version do you need to use.

Reply

Statistics

Topic viewed 943 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!