[ https://issues.apache.org/jira/browse/PDFBOX-3390?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Tilman Hausherr closed PDFBOX-3390. ----------------------------------- Resolution: Implemented Implemented (mostly) in PDFBOX-3984. Further work is being done in PDFBOX-3017. See also the comment by mkl on 21.11.2018. > Code sample for create a PDF PADES-LTV > -------------------------------------- > > Key: PDFBOX-3390 > URL: https://issues.apache.org/jira/browse/PDFBOX-3390 > Project: PDFBox > Issue Type: New Feature > Components: Signing > Affects Versions: 2.0.2 > Reporter: Leuqarut > Priority: Minor > Labels: build, test > > 0 > down vote > favorite > I'm using PDFBox 2.0 I would like to create a PDF with PADES-LTV format but > not me steps to do so. My question is on the part of the LTV parameters and > when applied. > Need to know at what point are added and how > I put part of my code if you can guide me.But I am using the example of > signing it PDFBox > https://svn.apache.org/viewvc/pdfbox/trunk/examples/src/main/java/org/apache/pdfbox/examples/signature/ > I have this information but not how to apply it PDFBox > According to ETSI TS 102 778-4 V1.1.2 (2009-12) the structure of a PDF > document to which LTV is applied is illustrated in figure 2. > Figure 2: Illustration of PDF Document with LTV > The life-time of the protection can be further extended beyond the life-of > the last document Time-stamp applied by adding further DSS information to > validate the previous last document Time-stamp along with a new document > Time-stamp. This is illustrated in figure 3. > Figure 3: Illustration of PDF Document with repeated LTV > On the other hand, according to Adobe (as written by their PDF evangelist > Leonard Rosenthol on the iText mailing list in January 2013), > LTV enabled means that all information necessary to validate the file (minus > root certs) is contained within. So this statement of yours would be true. > the PDF is signed correctly and contains all necessary certificates, a valid > CRL or OSCP response for every certificate But since the only way for that > statement to be true is for the presence of DSS, you must have DSS for > LTV-enabled to appear. No timestamp (regular or document level) is required. > Due to this divergence PDF documents with LTV according to ETSI usually are > presented by Adobe software to have one not LTV-enabled document time stamp. > reference (for itext) > :http://stackoverflow.com/questions/27892960/how-to-enable-ltv-for-a-timestamp-signature > Thanks in advance -- This message was sent by Atlassian JIRA (v7.6.3#76005) --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@pdfbox.apache.org For additional commands, e-mail: dev-h...@pdfbox.apache.org