PDF Digital Signature using SM2 Encryption

Similar Messages

• Java SSF for Digital Signatures and Document Encryption

  Hello,
  I have read in "SAP Help - Java Development Manual" that there is a Java SSF library for Digital Signatures and Document Encryption API.
  http://help.sap.com/saphelp_nw04s/helpdata/en/4f/65c3b32107964996a56e4165077e24/frameset.htm
  I am trying to develop an example application in NWDS using Interfaces/classes (ISsfData, SsfDataXml...), but NWDS does not find this classes in any library.
  I have searched for Javadocs in NWDS plugins directory and this classes and interfaces should be in JAR com.sap.security.api.jar, but they aren't there.
  Our WAS version is: NW04s WAS 7.0 SP11 and he have downloaded Java Crypto Library (IAIK) and also SAP XML Toolkit.
  Does anyone know how to find or obtain this library?
  Thanks in advance,
  Jorge Linares

  Hello Francesco,
  I want to  generate a digital signature (PKCS#7,XML) using SAP SSF API as explained in
  http://help.sap.com/saphelp_nw04/helpdata/en/4f/65c3b32107964996a56e4165077e24/content.htm and in Amol Joshi's reply in
  Digital Signatures and Document Encryption api
  so my question  is From which PI/XI version and its SPS this SAP SSF LIBRARY is supported ?
  Kind Regards,
  Kubra fatima.

• Digital Signatures and Document Encryption api

  Hello Expert,
  From which SAP NETWEAVER 7.0 SPS  Digital Signatures and Document Encryption api  is supported ?
  I found  Javadocs for  SAP NetWeaver 04 SPS15.Is this api supported from SPS 15  or prior to SPS 15   also?
  Regards,
  Kubra Fatima.

  Hello Francesco,
  I want to  generate a digital signature (PKCS#7,XML) using SAP SSF API as explained in
  http://help.sap.com/saphelp_nw04/helpdata/en/4f/65c3b32107964996a56e4165077e24/content.htm and in Amol Joshi's reply in
  Digital Signatures and Document Encryption api
  so my question  is From which PI/XI version and its SPS this SAP SSF LIBRARY is supported ?
  Kind Regards,
  Kubra fatima.

• PDF Digital Signature for Offer letter

  How to enable, pdf digital signature for BI Publisher, we need to enable for the offer letter generated thro' irecruitment .
  Please advice
  Thanks
  Siva

  I haven't seen anything related to doing this for iRecruitment but have you checked over the standard BI Publisher support for digital signatures?
  17 Support for Digital Signature in PDF Documents
  http://download.oracle.com/docs/cd/E10383_01/doc/bip.1013/e10416/bip_digital_sigs.htm

• I am unable to sign with Digital signature using a .PFX file. The button does not appear.

  When I try to sign with a Digital signature using a .PFX file, the button to select the signature does not appear. I have JAVE SE 7 U11 10.11.2.21 platform in my add ons and JAVA Consol 6.0.33 and 6.0.35 in my extentions.
  This problem is not encountered in Crome or IE-8
  ASHISH

  Regarding your first question about bookmarks, I think you discovered the answer in when you pressed the address bar. The second tab there has your bookmarks.
  As for the keyboard, I'm not sure why your Firefox is reacting so slowly; mine seems to show keyboards even when I don't want them. If you have accumulated a lot of history, perhaps that's an issue?
  Did you use any third party software to move your Firefox data from internal memory to the storage card?

• PDF digital signature SDK

  We are software house in document management are, and we want incorporate in our document management solution the feature of PDF digital signature.
  What is your best SDK product for doing this (PDF Library SDK or Acrobat SDK)?
  We have a windows client developed in C++ unmanaged and a web client developed in C#.
  And what is the price of the product?
  The price includes royalty free when delivered integrated with our product?
  Thanks & Regards,
  Rui Oliveira

  It is to be delivered integrated with our software that it is installed in multiple servers and with multiple web/windows computers doing digital signatures.
  The windows client is developed in C++ unmanaged and the web client developed in C#.
  In first stage, could be enough to integrate with our windows version (developed in C++ unmanaged). This is a thick windows client installed in each client computer (Acrobat Pro is not installed in each client computer).
  tks

• Unable to Split pdf form containing Digital Signature using Assembler

  Hi All,
  I am trying to split a pdf form into multiple forms using Assembler service provided by Adobe LiveCycle. Normal pdf's are getting splitted but facing issues with pdf's containing Digital Signature is there any way to split those forms please suggest ?????
  Regards,
  Ali

  Hello,
    We have a livecycle form that allows people to save an image with an image field and other data in some text fields.
  The users having problems are using Acrobat Pro XI. They seem to be able to open the form, fill in some data and save the data just fine except for this image.
  The image does not display when the user re-opens the form. However, if another user opens that saved form then that user can see the image OK.
  Any ideas what might be happening?
  Thank you.

• Verifying a Digital Signature using message digest

  Hi, i am new to java.
  I have a Digitally signed document, i wanna verify this signed document against the original one.
  i got the idea from this link:
  http://help.sap.com/saphelp_45b/helpdata/en/8d/517619da7d11d1a5ab0000e835363f/content.htm
  i signed a pdf doc with my SmartCard. the third party signing tool passed me the PKCS7 digital signature and i stored it in database. the problem arose when i retrieved this digital signature from DB and verified against the original doc using the message digest method. the base64 result strings are always not equal.
  I am sure about this:
  -the retrieved digital signature was GOOD.
  -the original doc was GOOD.
  but why i can't get the same 2 message digests? can somebody please help?
  below is part of my code:
  while (rsetDs.next())
       InputStream DSName2 = rsetDs.getBinaryStream(1);
       ByteArrayOutputStream byteStream = new ByteArrayOutputStream();
       byte[] myByte = Base64.decode(byteStream.toString());
       ByteArrayInputStream newStream = new ByteArrayInputStream(myByte);
       CertificateFactory cf = CertificateFactory.getInstance("X.509");
       Collection c = cf.generateCertificates(newStream2);
       Iterator i = c.iterator();
       while (i.hasNext())
            Certificate cert = (Certificate)i.next();
            X509Certificate cert1 = (X509Certificate)cert;
            try
                 java.security.MessageDigest md = java.security.MessageDigest.getInstance("MD5");
                 /*=============DB MD (BEGIN)==================*/
                 byte [] pubkeyByte = cert1.getPublicKey().getEncoded();
                 md.update(myByte);
                 md.update(pubkeyByte);
                 byte[] raw = md.digest();
                 String db_md = Base64.encode(raw);
                 /*============DB MD (end)============*/
                 /*=============PDF MD (BEGIN)==================*/
                 DataInputStream m_disFile = new DataInputStream(new FileInputStream("C:\\" + "original_doc.pdf"));
                 int m_iNum = m_disFile.available();
                 byte[] msgBytes = new byte[m_iNum];
                 m_iNum = m_disFile.read(msgBytes, 0, m_iNum);
                 md.update(msgBytes);
                 byte[] digestMd = md.digest();
                 md.reset();
                 String pdf_md = Base64.encode(digestMd);
                 /*=============PDF MD (END)==================*/
  ..thanks in advance.

  PKCS#7 SignedData objects are far more complex then it looks like you are taking them. First the PKCS#7 SignedData object will contain the OID for the message digest algorithm used and for the encryption algorithm used. From the looks of your code you are simply assuming MD5.
  It also contains all of the data that was signed which is typically much more than just the document. It also of course contains the public keys and signatures which singed the document. In your case it will probably only have one public certificate and one signature.
  Also note that a signature is an encrypted hash. Looking at your code I do not see you use encryption at all or rather for verification decryption.
  Here is the basic process a signature takes.
  MessageDigest md = MessageDigest.getInstance(algOID);
  byte[] digest = md.digest(message.getBytes(charEncoding));
  Cipher c = Cipher.getInstance("RSA/2/PKCS1Padding");
  c.init(Cipher.ENCRYPT_MODE, priKey);
  byte[] signature = c.doFinal(digest);Note that the resulting byte array is not the message digest but the encrypted message digest. You must use the corresponding public key to decrypt the signature to get the message digest value. It is because the trusted public key can decrypt the correct message digest that we know it was encrypted by the holder of the private key. It is because the decrypted message digest value is equal to my computed message digest value that we know the document has not be altered...
  Now PKCS#7 SignedData does not take the message digest of the document, in your case your PDF. It creates a message digest on an ASN.1 object which includes the bytes of your document plus a bunch of meta data.
  For more info on the exact format of a PKCS#7 signature file check out
  http://www.rsasecurity.com/rsalabs/pkcs/pkcs-7/index.html
  Look through this doucment for SignedData as a starting place and follow through all of the sub objects that make up a SignedData object. This will give you an idea of what is involved.

• Digital Signatures using JSONP across Domains

  Currently using Apex 3.2.1 through OHS. Not that that really matters in this instance, it would probably work the same in Apex 4.
  I have working code to digitally sign an apex web form. The user presses a "Digitally Sign" button on the page, and an ondemand process runs the pl/sql package to read in the required CGI variables and create a signature string (similar to what you may see on a digitally signed PDF file), then saves that string to the database to mark that form as being digitally signed.
  However, the web server that is running this code must be setup to require user certificates in order for this to work. Instead, what I would like to do is make a call to our login server which is already setup to require user certificates, and get the digital signature from there instead.
  So far, I have created a mod_plsql call on the login server which I can access via a URL to return the signature, but what I don't know how to do is call that URL from an Apex page on the normal server? From my research, I'm thinking this is going to need to use JSONP because it would require cross domain communication. Am I going in the right direction here? I don't know a thing about JSON, and I'm not sure where to start.
  Can anyone provide any guidance?
  Thanks,
  Kris

  Anybody have any guidance on how to handle this?
  Thanks!

• Unable to add digital signatures using Adobe LCES Digital Security

  I have tried running the Sample Java code to add digital signature fields and add signatures. I am getting errors. The log file shows:
  com/adobe/idp/Context
  Jan 2, 2009 4:00:14 PM com.adobe.livecycle.signatures.common.CommonBaseException logException
  SEVERE: ALC-DSS-300-000 Generic SignaturesBaseException (in the operation : addSignatureField)
  Caused By: com/adobe/idp/Context(EjbMessageDispatcher.java163)
  Caused By: com/adobe/idp/Context(Class.java-2)
  ALC-DSS-300-000 Generic SignaturesBaseException (in the operation : addSignatureField)
  Caused By: com/adobe/idp/Context(EjbMessageDispatcher.java163)
  Caused By: com/adobe/idp/Context(Class.java-2)
  com.adobe.livecycle.signatures.client.SignatureServiceClient.addSignatureField(SignatureSe rviceClient.java:342)
  apple.AddSignatureField.main(AddSignatureField.java:53)
  Caused By: com.adobe.idp.dsc.DSCException
  com.adobe.idp.dsc.provider.impl.ejb.EjbMessageDispatcher.doSend(EjbMessageDispatcher.java: 163)
  com.adobe.idp.dsc.provider.impl.base.AbstractMessageDispatcher.send(AbstractMessageDispatc her.java:57)
  com.adobe.idp.dsc.clientsdk.ServiceClient.invoke(ServiceClient.java:208)
  com.adobe.livecycle.signatures.client.SignatureServiceClient.addSignatureField(SignatureSe rviceClient.java:324)
  apple.AddSignatureField.main(AddSignatureField.java:53)
  Has anyone worked with the JAVA API to add digital signatures on to a PDF file using Adobe LiveCycle ES 8.2? If yes please let me know.
  - Ragha

  This was traced back to one of the ini files still having a folder name from the last instance installed (i.e. SERVER6).
  So it is fixed

• Digital ID used to encrypt a document, I think I lost my ID.

  Ill try to keep this short as possible, but I want to include the story as to what I think happened.
  We installed a new domain controller in our building and manually recreated all of the users. We used the same login names but the domain name changed. So using ProfWiz we migrated all of the user accounts to the new domain and now nobody can open the purchase order PDF's. Unfortunately I wasn't involved in setting up the digital ID's or setting the permissions on these documents and the person that did it was let go from his job a couple days ago. I still have his user profile and computer so I tried accessing the files from his account, but it is also on the new domain so I cant access the PDF's from the creators computer either.
  Is there any way I can re-import these digital ID's or do I have to revert a computer back to the old domain? I'm not sure what are my other options are.
  The error message I'm receiving is "A digital ID was used to encrypt this document but no digital ID is present to decrypt it. Make sure your digital ID is properly installed or contact the document author."

  Just wondering if anyone has an answer for this? Or if its impossible, I dont want to waste my time with it either. Thanks.

• Add Digital Signature Using C# and Acrobat SDK

  Hi everybody!
  Please, how can I digitally sign PDF documents using Acrobat Professional 8 API and C# language?
  I know that I need use JavaScript APIs (IAC) but I can't find anything really helpful in the Acrobat SDK Documentation. Could anyone post a sample of how use javascript manipulation inside C# (Framework 2.0), or give me a direction?
  Thank in advance!

  Hi Felipe,
  when i am signing the document.
  I believe i am missing something in my code. After executing the code to sign, when i open it i get "The following signature fields are not signed".
  Please let me know where i m doing wrong?
  Here is my VB.NET Code
  Dim gapp As Acrobat.CAcroApp
  Dim gpddoc As Acrobat.CAcroPDDoc
  Dim jso As Object
  gapp = CreateObject("acroexch.app")
  gpddoc = CreateObject("acroexch.pddoc")
  If gpddoc.Open("C:\Test1.pdf") Then
  jso = gpddoc.GetJSObject()
  jso.SetUserPassword("'testpassword12'")
  'jso.ShowMyMessage("SetUserDigitalIDPath")
  jso.SetUserDigitalIDPath("'c:\\DrTest.pfx'")
  jso.app.execMenuItem("ADBESDK:AddSignature")
  jso.AddSignature(jso)
  gapp.Show()
  and here is the javascript
  // password to use the digital signature
  var sigUserPwd = "UNKNOWN";
  // to test the sample without user input, specify:
  // var sigUserPwd = "testpassword";
  // path to the digital signature file
  var sigDigitalIDPath = "UNKNOWN";
  // to test the sample without user input, specify:
  //var sigDigitalIDPath = "/C/DrTest.pfx";
  // other variables the user can modify
  var sigHandlerName = "Adobe.PPKLite";
  var sigFieldname = "sdkSignatureTest";
  var sigReason = "I want to test my digital signature program.";
  var sigLocation = "San Jose, CA";
  var sigContactInfo = "[email protected]";
  /* Add a menu item for AddSignature */
  app.addMenuItem( { cName: "ADBESDK:AddSignature", cUser: "Add My Signature", cParent: "Advanced",
  cEnable: "event.rc = (event.target != null);",
  cExec: "AddSignature(event.target)" });
  // main function
  AddSignature=app.trustedFunction(function (doc)
  app.beginPriv(); // explicitly raise privilege
  // if sigDigitalIDPath is not spcified, ask for user input
  if(sigDigitalIDPath == "UNKNOWN"){
  var cResponse = app.response({
  cQuestion: "Input your digital ID path:",
  cTitle: "Digital Signature",
  cDefault: "/C/DrTest.pfx",
  if ( cResponse == null) {
  app.alert("No input.");
  return;
  else
  SetUserDigitalIDPath(cResponse);
  // if sigUserPwd is not spcified, ask for user input
  if(sigUserPwd == "UNKNOWN"){
  var cResponse = app.response({
  cQuestion: "Input your password:",
  cTitle: "Digital Signature",
  cDefault: "testpassword",
  if ( cResponse == null) {
  app.alert("No input.");
  return
  else
  SetUserPassword(cResponse);
  // create a new signature field
  var signatureField = AddSignatureField(doc);
  // sign it
  if(signatureField) Sign(signatureField, sigHandlerName);
  app.endPriv();
  // create a signature field in the upper left conner with name of sigFieldname
  function AddSignatureField(doc)
  var inch=72;
  var aRect = doc.getPageBox( {nPage: 0} );
  aRect[0] += 0.5*inch; // from upper left hand corner of page.
  aRect[2] = aRect[0]+2*inch; // Make it 2 inch wide
  aRect[1] -= 0.5*inch;
  aRect[3] = aRect[1] - 0.5*inch; // and 0.5 inch high
  var sigField = null;
  try {
  sigField = doc.addField(sigFieldname, "signature", 0, aRect );
  } catch (e) {
  console.println("An error occurred: " + e);
  return sigField;
  // define the Sign function as a privileged function
  Sign = app.trustedFunction (
  function( sigField, DigSigHandlerName )
  try {
  app.beginPriv();
  var myEngine = security.getHandler(DigSigHandlerName);
  myEngine.login( sigUserPwd, sigDigitalIDPath);
  sigField.signatureSign({oSig: myEngine,
  bUI: false,
  oInfo: { password: sigUserPwd,
  reason: sigReason,
  location: sigLocation,
  contactInfo: sigContactInfo}
  app.endPriv
  } catch (e) {
  console.println("An error occurred: " + e);
  // set a correct password for using the signature, so you can quietly sign a doc.
  function SetUserPassword(pwd)
  sigUserPwd = pwd;
  // set path to the digital signature file
  function SetUserDigitalIDPath(idPath)
  sigDigitalIDPath = idPath;
  Sumit

• How do I do a digital signature using the inbuilt camera

  I am using a MacBook Pro 13" and today I was shown in PC world how to use a digital signature by using the inbuilt camera. Is this possible with this model or is it only with the Retina models?

  You may find this article helpful.
  http://9to5mac.com/2014/02/15/how-to-use-preview-to-put-signatures-on-pdfs-pages -documents-and-mail-messages/
  Click the blue Reader button at the end of Safari address bar for easy viewing.

• Crystal Reports 2008 - PDF Digital Signatures

  Hello All,
  I'll appreciate if somebody can help me with a customer requirement.
  We are using .NET Crystal Reports 2008 libraries to render reports, basically,  programatically we open an RPT file, inyect data vía XML and render the report. Everything works fine, and the same .NET component let us to get a PDF version of the report.
  What we need to do now, according to our customer's requirement is how to add a Digital Signature to the PDF report.
  The one million question is: Is there any way using Crystal Reports 2008 .NET Libraries to add a Digital Signature to a report (in its PDF version)???
  Thanks in advance for your Help
  Adriá

  At least one of the 3rd-party Crystal report Desktop Scheduling tools listed at: http://www.kenhamady.com/bookmarks.html
  provides this functionality.

• Extract name from pdf digital signature

  I'm looking for info on extracting the digital signature name from a digitally signed field already in the pdf. I can see the signature when I open the file in Adobe Reader, but when I read the fields using cfpdfform, the digital signature field and its info is not listed amoung the fields.
  What procedure piece am I missing?

  Hi all,
  i have the same problem. Is it possible that only we have this problem? I found solutions with external partners, but i think it should be possible to do it inside SAP R/3, isn't it?
  best regards
  Erwin