[
https://issues.apache.org/jira/browse/PDFBOX-4784?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17049920#comment-17049920
]
Pierrick Vandenbroucke commented on PDFBOX-4784:
------------------------------------------------
Thanks for your reply.
The goal is the second one. We would like to provide a custom instance of
SecureRandom to PDFBox. The instance will be initialized on our side and that
will allow us to generate more than once the same binaries.
Currently, between the first and the second call on an encrypted document and
with the same signature configurations (signing time,...), we obtain different
binaries and that breaks created signatures.
> Possibility to provide the SecureRandom to SecurityHandler
> ----------------------------------------------------------
>
> Key: PDFBOX-4784
> URL: https://issues.apache.org/jira/browse/PDFBOX-4784
> Project: PDFBox
> Issue Type: Improvement
> Reporter: Pierrick Vandenbroucke
> Priority: Major
>
> In DSS, we build electronic signatures with two stateless operations
> (computation of the data to be signed and incorporation of the signature
> value). Currently, the signature creation fails with encrypted documents
> (AES) due to the Initialization Vector generations which produce different
> values at each call.
> We would need a way to "stabilize" this part. We discussed about that on our
> [issue tracker|https://ec.europa.eu/cefdigital/tracker/browse/DSS-1962] and
> the idea would be to provide a custom instance of the SecureRandom to the
> [SecurityHandler|https://github.com/apache/pdfbox/blob/2.0.19/pdfbox/src/main/java/org/apache/pdfbox/pdmodel/encryption/SecurityHandler.java#L381].
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
