PDF signing with timestamp: certificate details does not appear in timestamp properties
I have a code that implements TSA server in format RFC 3161. When I try to sign PDF file with timestamp using TSAClientBouncyCastle, I receive a signature where certificate details doesn't appear
Somebody know how to solve that?
I can post the code here, but I don't know which part of it. It would be nice if someone could guide me to a specific section in the RFC, then I will post the relevant part of the code and we can discuss about it. Thanks in advance
Link to sample pdf file https://drive.google.com/file/d/0B61KdyZ43x-9cEk5YVV6WVd4WUU/view?usp=sharing
The reason why certain timestamp authority details do not appear is indicated in the Signature Properties dialog beneath the Advanced Signature Properties dialog you have in front in your screenshot:
Thus, you do not only have to inspect your PDF signing code but also your code that implements TSA server in format RFC 3161 or the certificates it uses.
The TSA certificate
Your TSA certificate is invalid.
Digging through your signature, I eventually had a look at the certificates. As it turns out, you seem to use the same certificate for signing the signature and the time stamp. This cannot work!
Cf the specification:
The TSA MUST sign each time-stamp message with a key reserved specifically for that purpose. A TSA MAY have distinct private keys, e.g., to accommodate different policies, different algorithms, different private key sizes or to increase the performance. The corresponding certificate MUST contain only one instance of the extended key usage field extension as defined in [RFC2459] Section 4.2.1.13 with KeyPurposeID having value:
id-kp-timeStamping. This extension MUST be critical.
Your user certificate in particular does not have the required extended key usage marking it as a time stamping certificate.
- Extract columns of text from a pdf file using iText
- Rotate page content while creating PDF
- Java:using apache POI how to convert ms word file to pdf?
- Error 500 for PdfWriter iText 8.0.5 / Java/ Tomcat
- iText 8.0.5 managing french accentuation in Java
- Watermark RTL text appears incorrect
- iText8 Signature without reason or location
- How to correctly configure space between lines for PDF generated with text-pdf 8
- Extracting Text from a PDF with CID fonts
- iTextSharp 5: Create image from text
- Itext 7.0.2 Clockwise rotation of Image
- Android Itext HTML to PDF CSS on SVG work only in inline
- I am not capable to generate a PDF/A
- Apache PDFBox not able to extract text, but PDFBox Debugger showing the text correctly?
- last row is not created in table with itext 2.1.7 pdf
- Merging several PDF forms on C#
- How to use Fonts in iText PDF
- FlyingSaucer ITextRenderer finish errors (unbalanced save/restore and blank PDFs)
- document has no pages with itext
- How to convert HTML to PDF using iText
- Add sign to PDF using old iText-2.1.7
- How to configure BIRT Report Engine to load fonts directly from the classpath?
- Not able extract all the tags from pdf using iText-8 getAllFormField Method
- How to digital sign a pdf file using smartcard and iTextSharp?
- Read pdf using iText
- iText HTML to PDF change background color
- Reading ascii data with iText fails
- itextPDF 8 to generate pdf with emoji font support
- Extracting text using iText7 throws exception
- Add new page to PDF document using iTextSharp - C#