You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@pdfbox.apache.org by "Tilman Hausherr (JIRA)" <ji...@apache.org> on 2015/12/22 12:19:46 UTC
[jira] [Created] (PDFBOX-3173) Signature dictionary is not
decrypted in encrypted files
Tilman Hausherr created PDFBOX-3173:
---------------------------------------
Summary: Signature dictionary is not decrypted in encrypted files
Key: PDFBOX-3173
URL: https://issues.apache.org/jira/browse/PDFBOX-3173
Project: PDFBox
Issue Type: Bug
Components: Crypto
Affects Versions: 2.0.0
Reporter: Tilman Hausherr
Changes in PDFBOX-2801 and PDFBOX-2469 result in the signature dictionary not being decrypted in encrypted files. Because these aren't visible signatures, this is noticed only when looking at the signature dictionary in PDFDebugger.
Example files:
- PDFBOX-2711
- 045697.pdf
- 050289.pdf
- 070413.pdf
I hit that problem while wondering what to do about PDFBOX-2729, and wondered why the "too good to be true" solution of [~GGlad] worked at all, because his solution did encrypt the signature parts.
I did not find anything in the "32000" spec that the signature dictionary is not to be encrypted.
>From [~msahyoun]:
{quote}
>From ISO32000-2:
Encryption applies to all strings and streams in the document's PDF file, with the following exceptions:
The values for the ID entry in the trailer
Any strings in an Encrypt dictionary
Any strings that are inside streams such as content streams and compressed object streams, which themselves are encrypted
Any hexadecimal strings representing the value of the Contents key in a Signature dictionary
{quote}
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@pdfbox.apache.org
For additional commands, e-mail: dev-help@pdfbox.apache.org