Hi Michael, The work is not finished yet, I'm generating all the data but it's not going yet to the /DSS dictionary and there will also be the problem of updating an existing /DSS. The provenance of OCSP and CRL (the CRL could come from some cache, for example) is another issue and I suspect that I'll have to change the OCSPClient and CrlClient interface. It's a good idea to optionally validate all the certificates in the chain.
Paulo -----Original Message----- From: mkl [mailto:m...@wir-sind-cool.org] Sent: Tuesday, October 18, 2011 7:59 AM To: itext-questions@lists.sourceforge.net Subject: Re: [iText-questions] PAdES-LTV implementation Paulo, Paulo Soares-3 wrote: > Today I'll commit code for the timestamp and the rest until the end of the > week. As the rest has now been committed, I just took a glance at it... some C#ishness in it... ;) Looks simple enough for easy use. But is there a reason why only OCSP responses or CRLs for the signer certificates are included? For full-status verifications the validity of all the certificates in the certificate chain is important after all. Maybe adding a boolean parameter signerCertOnly and matching code to AddVerification(String) would be appropriate. Some of our customers are required to do full-status verifications by their auditors. As I don't think they are the only ones, such an addition might be of interest for others, too. Paulo Soares-3 wrote: > About the "ETSI PAdES Remote Interop Event" it sounds interesting but the > real boss here is Acrobat and if it works there the test is done. My > opinion, Bruno may think differently. Has anything been decided on this yet? Regards, Michael. -- View this message in context: http://itext-general.2136553.n4.nabble.com/PAdES-LTV-implementation-tp3792969p3914405.html Sent from the iText - General mailing list archive at Nabble.com. ------------------------------------------------------------------------------ All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity and more. Splunk takes this data and makes sense of it. Business sense. IT sense. Common sense. http://p.sf.net/sfu/splunk-d2d-oct _______________________________________________ iText-questions mailing list iText-questions@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/itext-questions iText(R) is a registered trademark of 1T3XT BVBA. Many questions posted to this list can (and will) be answered with a reference to the iText book: http://www.itextpdf.com/book/ Please check the keywords list before you ask for examples: http://itextpdf.com/themes/keywords.php ------------------------------------------------------------------------------ All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity and more. Splunk takes this data and makes sense of it. Business sense. IT sense. Common sense. http://p.sf.net/sfu/splunk-d2d-oct _______________________________________________ iText-questions mailing list iText-questions@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/itext-questions iText(R) is a registered trademark of 1T3XT BVBA. Many questions posted to this list can (and will) be answered with a reference to the iText book: http://www.itextpdf.com/book/ Please check the keywords list before you ask for examples: http://itextpdf.com/themes/keywords.php
