Andreas, kuehne wrote: > But in the other hand, PDF32000_2008 says: 12.8.3.2 > > [...] > For signing PDF files using PKCS#1, the only value of SubFilter that > should be used is adbe.x509.rsa_sha1, which uses the RSA encryption > algorithm and SHA-1 digest method. > [...] > > There is not much room for others algos ...
That paragraph already was in the PDF reference 1.5 (maybe even earlier), i.e. before the additional digest algorithms were allowed in 1.6 and 1.7. Table 257 (which has been introduced in 1.7) explicitly names most algorithms of the SHA-2 family and also RIPEMD160 as supported message digest algorithms. I think, therefore, that that 12.8.3.2 should be considered an outdated remnant from old times which has been missed by the respective committees who updated the PDF reference. Thus, it can be safely ignored. Regards, Michael. -- View this message in context: http://itext-general.2136553.n4.nabble.com/Digital-signature-with-DSA-key-tp3264088p3275507.html Sent from the iText - General mailing list archive at Nabble.com. ------------------------------------------------------------------------------ The ultimate all-in-one performance toolkit: Intel(R) Parallel Studio XE: Pinpoint memory and threading errors before they happen. Find and fix more than 250 security defects in the development cycle. Locate bottlenecks in serial and parallel code that limit performance. http://p.sf.net/sfu/intel-dev2devfeb _______________________________________________ iText-questions mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/itext-questions Many questions posted to this list can (and will) be answered with a reference to the iText book: http://www.itextpdf.com/book/ Please check the keywords list before you ask for examples: http://itextpdf.com/themes/keywords.php
