Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Internationalisation and localisation of validation profiles #47

Open
GoogleCodeExporter opened this issue Aug 6, 2015 · 1 comment

Comments

@GoogleCodeExporter
Copy link

I don't know about quirks in other countries, but Polish law requires that the 
CRL or OCSP response been created at least an hour after the signature has been 
created, German law only requires that the CA certificate was valid when user 
certificate was issued (so the user cert can have longer validity than CA).

What steps will reproduce the problem?
1. Sign and Timestamp the document
2. Download CRLs and add to document (extend to XAdES-C)
3. Perform full validation

What is the expected output? What do you see instead?
The validation should fail, as the CRL was issued before the signature was made 
or just few seconds after.

Please provide any additional information below.
While the additional validation could be simulated using 
CustomSignatureVerifier, I don't think this is a good solution for extended 
forms (XAdES-X, -X-L, -A). It also won't work for German locale.
Related: issue 18.

Original issue reported on code.google.com by [email protected] on 25 Sep 2012 at 1:04

@GoogleCodeExporter
Copy link
Author

The polish law requirement is defined as Grace Period (described in section 4.5 
of Standard in version 1.4.2)

Original comment by [email protected] on 28 Sep 2012 at 12:13

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

2 participants