EldoS | Feel safer!

Software components for data protection, secure storage and transfer

TElPDFSignature - certificate validity time issue

Also by EldoS: Callback File System
Create virtual file systems and disks, expose and manage remote data as if they were files on the local disk.
#32866
Posted: 03/31/2015 10:20:45
by Anders Tornqvist (Standard support level)
Joined: 03/03/2014
Posts: 8

Hi,

We are using the TElPDFSignature class to validate PDF signatures. The issue we are having is that the method Validate() returns true, even if the signing time in the signature is before the signing certificate was valid. This seems very strange. Are we doing something wrong? I have attached a PDF, renamed as TXT, where signing time is 10 seconds before the certificate was valid. When opened in Adobe Reader, the error "Not Time Valid" is reported.

Best regards,

Henrik
Comfact AB
#32867
Posted: 03/31/2015 10:40:49
by Dmytro Bogatskyy (EldoS Corp.)

Thank you for contacting us.

Quote
I have attached a PDF, renamed as TXT,

There is no attachment. Please use Helpdesk ( https://www.eldos.com/helpdesk/ ) to post the documents to us privately.

Quote
The issue we are having is that the method Validate() returns true, even if the signing time in the signature is before the signing certificate was valid.

What is the signature type? If the signature is loaded using TElPDFPublicKeySecurityHandler signature handler then a Validate() method doesn't check a certificate. You should check the certificate separately. Please see PDFBlackbox\Desktop\Processor sample.
If the signature is loaded using TElPDFAdvancedPublicKeySecurityHandler signature handler then a deep validation should be performed. Please see PDFBlackbox\Desktop\PAdES sample.

Reply

Statistics

Topic viewed 502 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!