summaryrefslogtreecommitdiff
path: root/xmlsecurity/README.md
blob: b983f5dc5eb5b48a18c77fb7469391ebc70fac7a (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
# Stuff for Document Signing

This code provides dialogs, and infrastructure wrapping `libxmlsec` and
`gpgme` that implements document signing.

For signing a document, a personal key pair is used, which consists of a
private key and a public key, which is added to the document in addition
to the digital signature of the document, when signing it.

The document signing can be done both for the source ODF/OOXML files and
the exported PDF files. It is also possible to sign existing PDF files.

To test the signed PDFs, one can use the `pdfverify` in this way:

    ./bin/run pdfverify $PWD/xmlsecurity/qa/unit/pdfsigning/data/2good.pdf

The file parameter should be an absolute path.

This is the output of `pdfverify` for `2good.pdf`:

```
verifying signatures
found 2 signatures
signature #0: digest match? 1
signature #0: partial? 0
signature #1: digest match? 1
signature #1: partial? 0
```

## References
* [Adobe: Digital Signatures in a PDF](https://www.adobe.com/devnet-docs/etk_deprecated/tools/DigSig/Acrobat\_DigitalSignatures_in_PDF.pdf)
* [Adobe: Acrobat DC Digital Signatures - Supported Standards](https://www.adobe.com/devnet-docs/acrobatetk/tools/DigSigDC/standards.html)