VerificationOptions Class |
[Missing <summary> documentation for "T:pdftron.PDF.VerificationOptions"]
Namespace: pdftron.PDF
public sealed class VerificationOptions : IClosable
The VerificationOptions type exposes the following members.
Name | Description | |
---|---|---|
VerificationOptions |
Constructs a set of options for digital signature verification.
|
Name | Description | |
---|---|---|
AddTrustedCertificate(Byte) |
Adds a certificate to the store of trusted certificates inside this options object. This overload uses the e_default_trust CertificateTrustFlag, which matches Acrobat's behaviour, to determine the trust level of the certificate.
| |
AddTrustedCertificate(String) |
Adds a certificate to the store of trusted certificates inside this options object, by loading it from a file. This overload uses the e_default_trust CertificateTrustFlag, which matches Acrobat's behaviour, to determine the trust level of the certificate.
| |
AddTrustedCertificate(Byte, UInt64) |
Adds a certificate to the store of trusted certificates inside this options object.
| |
AddTrustedCertificate(String, UInt64) |
Adds a certificate to the store of trusted certificates inside this options object, by loading it from a file.
| |
addTrustedCertificates |
Bulk trust list loading API from P7C.Attempts to decode the input data as binary DERand trust multiple trusted
root certificates from it.Compatible with Acrobat's .P7C format, which is a variation on PKCS #7/CMS that only
contains certificates(i.e.no CRLs, no signature, etc.).If a certificate cannot be decoded, this is ignored
and an attempt is made to decode the next certificate.This overload takes no account of trust - level flags
because none are available in the P7C format.Therefore, when this function is used, all certificates in the
P7C file will be loaded as if trusted for everything, which may lead to false positives when compared to other PDF software.
(Most applications use the FDF Cert Exchange format.) The FDF - trust - list - loading function "LoadTrustList" should be
used instead whenever possible.
| |
Close | ||
Destroy |
Frees the native memory of the object. This can
be explicity called to control the deallocation of
native memoryand avoid situations where the garbage
collector does not free the object in a timely manner.
| |
EnableDigestVerification |
Sets a flag that can turn on or off the verification of the digest (cryptographic hash) component of a digital signature.
| |
EnableModificationVerification |
Sets a flag that can turn on or off the verification of the permissibility of any modifications made to the document after the signing of the digital signature being verified, in terms of the document and field permissions specified by the digital signature being verified.
| |
EnableOnlineCRLRevocationChecking |
Enables / disables online CRL revocation checking.The default setting is
for it to be turned off, but this may change in future versions.
Note: CRL checking is off by default because the technology is inherently complicated
and resource - intensive, but may help improve verification rate when files are verified against
a recent reference - time(e.g.maximum security mode), because online CRLs will be valid within
that time.This mode will not be useful for old archival - type('LTV') documents
verified in archiving - and -compatibility security mode, because their online OCSPand /or CRL
responder servers may not be alive anymore.However, such LTV documents can be created
(if the CRL responder servers are still active) by enabling online checking, verifying, and then
embedding the data using DigitalSignatureField.EnableLTVOfflineVerification.
| |
EnableOnlineOCSPRevocationChecking |
Enables/disables online OCSP revocation checking. The default setting is for it to be turned on.
| |
EnableOnlineRevocationChecking |
Enables / disables all online revocation checking modes.The default settings are that
online OCSP is turned onand online CRL is turned off, but the default CRL setting may change in
future versions.
Note: CRL checking is off by default because the technology is inherently complicated
and resource - intensive, but may help improve verification rate when files are verified against
a recent reference - time(e.g.maximum security mode), because online CRLs will be valid within
that time.This mode will not be useful for old archival - type('LTV') documents
verified in archiving - and -compatibility security mode, because their online OCSPand /or CRL
responder servers may not be alive anymore.However, such LTV documents can be created
(if the CRL responder servers are still active) by enabling online checking, verifying, and then
embedding the data using DigitalSignatureField.EnableLTVOfflineVerification.
| |
EnableTrustVerification |
Sets a flag that can turn on or off the verification of the trust status of a digital signature.
| |
Equals | Determines whether the specified object is equal to the current object. (Inherited from Object.) | |
GetHashCode | Serves as the default hash function. (Inherited from Object.) | |
GetType | Gets the Type of the current instance. (Inherited from Object.) | |
LoadTrustList |
Bulk trust list loading API with trust flag support.Loads a trust list that is
structured in Acrobat's FDF Data/Cert Exchange format into the VerificationOptions
certificate store.Use of this function is strongly recommended instead of the P7C
API(i.e.AddTrustedCertificates).Certificates inside the FDF trust list that
cannot be decoded and loaded, will be skipped.
| |
ToString | Returns a string that represents the current object. (Inherited from Object.) |