Digital Signatures for PDF documents
C
CA · See Certificate Authority
CAcert · 66, 130
cacerts · 72, 130
CAdES · See CMS Advanced Electronic Signatures
CDS · See Certified Document Services
Certificate
certificate chain · 67, 84, 89, 90, 107, 130
contents · 19, 71
CRL URL · 69
expiration · 79, 132, 135
export from key store · 35
OCSP URL · 76
retrieve information · 127
revoked certificate · 76, 80
root certificate · 67, 74
self-signed · 19
signing certificate · 67
TSA URL · 81
validation of certificates · 135
verify against a CRL · 133
verify using OCSP · 133
Certificate Authority · 65–66, 83, 84
Certificate Revocation List · 69–76, 133, 137
check if a certificate has been revoked · 76
comparison with OCSP · 78
get URL from Certificate · 69
getting the CRL online · 70
keeping the CRL small · 90
using a CRL offline · 75
validity period · 76
Certificate viewer · 32, 67, 73, 77, 81, 89
Certification signature · 48, 129
certification level · 49, 127
Certified Document Services · 85, 89, 130
CMS · See Cryptographic Message Syntax
CMS Advanced Electronic Signatures · 24, 30
Command APDU · 103
Common Criteria · 120
Contact info · 46
CRL · See Certificate Revocation List
Cryptographic hash function · See Digest algorithm
Cryptographic Message Syntax · 30
PKCS#7 · 22
Cryptographic Token Interface · 22, 93–96
Cryptoki · See Cryptographic Token Interface
D
Decrypting a message · 17–18
DER · See Distinguished Encoding Rules
Detached signature · 25
Digest algorithm · 13
Digital signature
concept · 9–11, 20
detect in PDF · 123
disambiguation · 11
estimated size · 91, 139
get page number and coordinates · 126
retrieving information · 125–30
verification against a key store · 130
Digital Signature Algorithm · 28
Distinguished Encoding Rules · 21
Distinguished Name · 69, 76, 81
DMS · See Document Management System
DN · See Distinguished Name
Document authenticity · 21, 65
Document integrity · 21, 65, 123, 124
breaking integrity · 7–9
Document Management System · 121, 138
Document revisions · 53
Document Security Store · 24, 135, 137, 138
contents · 137
DSA · See Digital Signature Algorithm
DSS · See Document Security Store
E
ECDSA · See Elliptic Curve Digital Signature Algorithm
ECM · See Enterprise Content Management
eID · 97–98, 106, 101–8, 130, 131
is it safe? · 101
Elliptic Curve Cryptography Standard · 23, 28
Elliptic Curve Digital Signature Algorithm · 28
Encrypting a message · 17–18
Encryption algorithm · 127, 139
Enterprise Content Management · 121
Enterprise Content Management Association · 23
Estimated size · 91
ETSI · See European Telecommunications Standards
Institute
European Telecommunications Standards Institute · 23,
25
External signature · 93–122
ExternalDigest interface · 30
ExternalSignature interface · 30
custom implementation · 106, 113
F
Federal Information Processing Standard · 22
Field locks · 62, 127, 129
FIPS · See Federal Information Processing Standard
Form field properties · 59