Hi,
ETSI EN 319 422 : https://www.etsi.org/deliver/etsi_en/319400_319499/319422/01.01.01_60/en_319422v010101p.pdf
Does GemBox.PDF TimeStamper support TSA in compliance mode with ETSI EN 319 422 ?
regards
Pawel
Hi Pawel,
This document primarily specifies the requirements for a Time-Stamping Authority that provides the time-stamping server, has a time-stamping certificate, specifies transport protocols to be supported, and formats the time-stamping response.
GemBox.Pdf is a time-stamping client, so the “Requirements for a time-stamping client” specified from page 6 of that document should be satisfied.
GemBox.Pdf supports the time-stamping request as defined in IETF RFC 3161 and supports fields reqPolicy, nonce, and certReq.
The reqPolicy field is currently not exposed on PdfTimestamper because no user has requested it yet, and we don’t want to clutter our API with features that are not used, but we can easily expose it if needed.
The nonce field is not exposed because it is a low-level detail of the time-stamping protocol, and GemBox.Pdf uses the value of DateTime.Now.Ticks + Environment.TickCount by default.
The certReq field is not exposed because its value should always be true. After all, the TSA certificate must be present in the time-stamp response so that the response payload can be validated with the public key contained in that certificate and to validate the actual certificate chain by navigating through the certificate issuers up to the root certificate.
Hash algorithms used to hash the information to be time-stamped can be explicitly specified by the user via the PdfTimestamper.HashAlgorithm property, so it is up to the user to use the algorithm that conforms to this ETSI specification.
If there is a validator for this ETSI specification, you are welcome to validate the PDF file time-stamped with GemBox.Pdf. If the validator reports any problems, contact us, and we will investigate.
Regards,
Stipo
Hi,
in the specification of QTSA from KIR Company : https://www.elektronicznypodpis.pl/storage/file/core_files/2025/3/25/d08821c2195fdb5f8d8b7ad99ea64e62/KIR_Certification_Policy_20250325_sig.pdf - 7.4.1 paragraf - the ETSI EN 319 422 is required.
Regards
Pawel
Hi Pawel,
GemBox. Pdf (in that document, “the subscriber making a request for the issuance of a time stamp”) should be able to timestamp the PDF file by communicating with the KIR time stamp server.
If you encounter any problem, don’t hesitate to contact us.
Interestingly, this KIR document is very detailed and strict regarding digital signatures and time stamping, but when validating its signature in Adobe Acrobat, for some reason, Adobe Acrobat is unable to determine the validity of the signer’s certificate because it is unable to check the revocation status of the signer’s certificate.
Regards,
Stipo