digital-signature

问题 This is extended question from : Adding LTV in signature makes pdf invalid using C# I have signed a file using DSS services of global sign. But that pdf shows different behavior for different laptops and PCs. Some adobe reader even if the LTV is added, It shows LTV not enabled moreover suppose there are 3 certificates in signed doc and showing valid in my adobe but in other person's adobe reader it is only one or two certs middle certificate is missing or only last certificate in present in

问题 I'd like to double check how reliable is iText's signatureCoversWholeDocument() . I have a document with one signature, which returns false for signatureCoversWholeDocument() , but Adobe Acrobat Reader doesn't report anything wrong with the document. iText's method seems to be to sum up the byte range it gets in getSignatureNames() : public ArrayList<String> getSignatureNames() { ..... PdfArray ro = v.getAsArray(PdfName.BYTERANGE); if (ro == null) continue; int rangeSize = ro.size(); if

问题 How can we do transaction signing in mozilla firefox by loading PKCS#11 library to database. after some research i found about capicom library. but the thing is this library does not support with windows7 and higher versions. 回答1: you cannot use c code but you can do the same by java applets which are to be signed. Please refer http://www.nakov.com/books/signatures/Java-for-Digitally-Signing-Documents-in-Web-book-Nakov.html 回答2: Extension signTextJS does exactly what you need and can be

问题 I'm and getting an SVG signature from a different application and want to save it as a string value so we can use PrimeFaces signature on a current application. Is this possible? Current SVG <svg xmlns="http://www.w3.org/2000/svg" version="1.2" baseProfile="tiny" viewBox="0, 0, 1320, 800" height="800" width="1320"> <g stroke-linejoin="round" stroke-linecap="round" fill="none" stroke="black"> <path stroke-width="24" d="M1068,420c0,0 0,0 0,0 "/> <path stroke-width="27" d="M1068,420c-1,-1 -1,-1

问题 I am a beginner in DocuSign API Implementation. I have a webhook type action in my controller, thate inherited from ApiController base class. public class DocuSignController : ApiController But it's always shows a message like below. The controller for path '/XXX/XXX' was not found or does not implement IController. I know this issue the ApiController not inherited from the IController class. But the webhook needed ApiController (I hope i am right). My website have already SSL enabled (this

问题 I am trying to sign a pdf file using PKCS7 and X509Certificate but I get the following error when I open the signed pdf file in Adobe. Document has been altered or corrupted since it was signed Docuement Hash 66305799d97adc716694faa3aecb3b82136a76a57e0470fb289dcf727b83304b Following is my code: public class Helper { private static PdfPKCS7 _signature; private static PdfSignatureAppearance _apperance; private static byte[] _hash; private static byte[] _signatureHash; public static byte[]

问题 Does anyone know which signature algorithm is used for RSACryptoServiceProvider.SignHash? I believe it is RSAPKCS1, is that still secure? Does anyone have an idea of configuring RSASSA-PSS as the signature algorithm for the RSACryptoServiceProvider without using some third-party library like BouncyCastle? Thanks in advance. 回答1: RSACryptoServiceProvider can only do PKCS-1 signatures. In .NET 4.6 a new set of methods was added on the RSA base class which added an RSASignaturePadding parameter.

问题 So I'm stuck with this problem: IE Edge no longer allow applets, activeX, etc. , and I have this applet that is used for digital signature , the idea is to extract the private key from the KEY file in the client side , in that way the private key never leaves the client's computer, that is a requirement for security , it can't be avoid :( I'm looking for APIs or frameworks, but I can't found a way to solve this, with jsrsasign the examples uses a PEM file but my users have .CER + .KEY +

问题 I am trying to TimeStamp a Digital Siganture (with a local TimeStamp certificate) in C# with BouncyCastle. My understanding about TimeStamp is that it is to sign the current time. Not sure if it should be current time + original signature content? Please help on this also. My main confusion is if the generated TimeStamp be added to Singed/Unsigned attributes of original signature. OR it will be added as a CounterSignature? 回答1: Time stamp's goal is to prove that signature was created before a

问题 I need to append a pdf file to a digital signed pdf file, keeping valid the signature ...maybe using revision? ...using iTextSharp? How can I do it? Please help me with some sample. 回答1: You can't as that invalidates the whole point of digital signatures, namely to detect when something exactly as you describe occurs and therefore ensure the validity of the original document. To do as you want, you will need to add the extra PDF to the unsigned original PDF and then resign the new