KrakenTyio / eid-applet

Automatically exported from code.google.com/p/eid-applet
Other
0 stars 0 forks source link

Signature validation of PowerPoint 2007 fails #74

Closed GoogleCodeExporter closed 8 years ago

GoogleCodeExporter commented 8 years ago
Hi,
I have a problem to validate a PowerPoint document signed using Microsoft 
Office 2007. Method 
be.fedict.eid.applet.service.signer.ooxml.OOXMLSignatureVerifier.isValidOOXMLSig
nature() returns false. The same document signed using Microsoft Office 2010 is 
validated OK.

Compare list of references in the Manifest section of the XML signatures 
(resources /_xmlsignatures/sig1.xml of the documents):

A significant difference in the two documents is that the digital signature 
generated using Office 2007 does not cover these two resources:

/ppt/presProps.xml
/ppt/viewProps.xml

However, there is a check inside method 
be.fedict.eid.applet.service.signer.ooxml.OOXMLSignatureVerifier.isIdPackageObje
ctValid() if these two resources are signed (see constants in 
be.fedict.eid.applet.service.signer.ooxml.OOXMLSignatureFacet.contentTypes). 
The validation therefore fails.

Versions: eid-applet-service-signer-1.0.4.GA
Environment: Oracle JDK 1.6.0_24 64-bit on Linux 64-bit, Oracle JDK 1.6.0_24 
32-bit on MS Windows 7 64-bit

Original issue reported on code.google.com by stepan.m...@seznam.cz on 14 Mar 2012 at 3:18

GoogleCodeExporter commented 8 years ago
eID DSS will only validate signatures correctly that are created via eID DSS 
itself.

Original comment by frank.co...@gmail.com on 17 Oct 2012 at 12:36