[
https://issues.apache.org/jira/browse/PDFBOX-5003?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17221356#comment-17221356
]
Michael Klink commented on PDFBOX-5003:
---------------------------------------
{quote}albeit then, Acrobat is kind of misleading{quote}
Please remember, the designation "LTV-enabled" depends only partially on which
information are included in the document, it also depends on which certificates
the Acrobat in question trusts (via trust lists and the OS, plus explicitly
trusted certificates) and the validation settings of that Acrobat.
Essentially, whenever someone whose Acrobat configuration you don't know says
that a PDF signature is LTV-enable, that by itself hardly means anything.
> Analyze signatures where DSS / LTV is inside the signature
> ----------------------------------------------------------
>
> Key: PDFBOX-5003
> URL: https://issues.apache.org/jira/browse/PDFBOX-5003
> Project: PDFBox
> Issue Type: Improvement
> Components: Signing
> Affects Versions: 3.0.0 PDFBox
> Reporter: Ralf Hauser
> Priority: Major
> Attachments: CH_ISBsigValidatRep_368811.pdf,
> image-2020-10-27-12-27-32-843.png
>
>
> This is an extension of PDFBOX-4297
> E.g. in CH_ISBsigValidatRep_368811.pdf they are not where 4297 exptects them .
>
> Possibly,
> [https://ec.europa.eu/cefdigital/wiki/display/CEFDIGITAL/eSignature] gives
> further insights.
> (another test case is QV_RCA1_RCA3_CPCPS_V4_11.pdf from previous versions of
> TestCreateSignature.testAddValidationInformation() - PDFBOX-2776)
>
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
