search

makdimka077 / xades4j

Automatically exported from code.google.com/p/xades4j
GNU Lesser General Public License v3.0
0 stars 0 forks source link

Internationalisation and localisation of validation profiles #47

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago 
I don't know about quirks in other countries, but Polish law requires that the 
CRL or OCSP response been created at least an hour after the signature has been 
created, German law only requires that the CA certificate was valid when user 
certificate was issued (so the user cert can have longer validity than CA).

What steps will reproduce the problem?
1. Sign and Timestamp the document
2. Download CRLs and add to document (extend to XAdES-C)
3. Perform full validation

What is the expected output? What do you see instead?
The validation should fail, as the CRL was issued before the signature was made 
or just few seconds after.

Please provide any additional information below.
While the additional validation could be simulated using 
CustomSignatureVerifier, I don't think this is a good solution for extended 
forms (XAdES-X, -X-L, -A). It also won't work for German locale.
Related: issue 18.

Original issue reported on code.google.com by hubert.k...@gmail.com on 25 Sep 2012 at 1:04

GoogleCodeExporter commented 9 years ago 
The polish law requirement is defined as Grace Period (described in section 4.5 
of Standard in version 1.4.2)

Original comment by hubert.k...@gmail.com on 28 Sep 2012 at 12:13