Package com.pdftools.signaturevalidation
Enum SubIndication
- All Implemented Interfaces:
Serializable,Comparable<SubIndication>
Sub-status indication of the signature validation process
See ETSI TS 102 853 and ETSI EN 319 102-1.-
Enum Constant Summary
Enum ConstantsEnum ConstantDescriptionThe certificate has no revocation information.The signature is considered invalid because the certificate chain used in the validation process does not match the validation constraints related to the certificate.The signature is considered invalid because at least one of the algorithms used in an element (e.g.At least one of the algorithms used in an element (e.g.The signature is considered invalid because the Signature Validation Algorithm has detected that the signing time is after the expiration date (notAfter) of the signer's certificate.The certificate has expired and no revocation information is available in the signature or document.The signature is not conformant to one of the base standardsAny other reasonThe signature is invalid because at least one hash of the signed data object(s) included in the signing process does not match the corresponding hash value in the signature.The certificate's chain is incomplete.No revocation information is available in the revocation information sources.No certificate chain has been found for the identified signer's certificate.A proof of existence that proves whether a signed object was produced before a compromising event (e.g.The policy to use for validation could not be identified.The signer's certificate cannot be identified.The signature is considered invalid because the Signature Validation Algorithm has detected that the signing time is before the issue date (notBefore) of the signer's certificate.The signer's certificate is expired or not yet valid at the validation date/time.The formal policy file could not be processed (e.g.The signer's certificate has been revoked.At least one certificate chain was found, but an intermediate CA certificate has been revoked.The signer's certificate was revoked at the validation date/time.The signature is considered invalid because one or more properties of the signature do not match the validation constraints.The signature is invalid because the signature value in the signature could not be verified using the signer's public key in the signer's certificate.Cannot obtain signed data.Constraints on the order of signature time-stamps and/or signed data object (s) time-stamps are not respected.Insufficient information to fulfill all constraints.The signature was created using a policy and commitment type that is unknown to the SVA.The certificate is not trusted because there is no valid path to a trust anchor. -
Method Summary
Modifier and TypeMethodDescriptionstatic SubIndicationReturns the enum constant of this type with the specified name.static SubIndication[]values()Returns an array containing the constants of this enum type, in the order they are declared.
-
Enum Constant Details
-
REVOKED
The signer's certificate has been revoked.
-
HASH_FAILURE
The signature is invalid because at least one hash of the signed data object(s) included in the signing process does not match the corresponding hash value in the signature.
-
SIG_CRYPTO_FAILURE
The signature is invalid because the signature value in the signature could not be verified using the signer's public key in the signer's certificate.
-
SIG_CONSTRAINTS_FAILURE
The signature is considered invalid because one or more properties of the signature do not match the validation constraints.
-
CHAIN_CONSTRAINTS_FAILURE
The signature is considered invalid because the certificate chain used in the validation process does not match the validation constraints related to the certificate.
-
CRYPTO_CONSTRAINTS_FAILURE
The signature is considered invalid because at least one of the algorithms used in an element (e.g. the signature value, a certificate, etc.) has been considered unreliable. Either the algorithm used to invalidate the signature or the size of the keys used by the algorithm are no longer considered secure. The Signature Validation Algorithm has detected that this element was generated after this algorithm was deemed insecure.
-
EXPIRED
The signature is considered invalid because the Signature Validation Algorithm has detected that the signing time is after the expiration date (notAfter) of the signer's certificate.
-
NOT_YET_VALID
The signature is considered invalid because the Signature Validation Algorithm has detected that the signing time is before the issue date (notBefore) of the signer's certificate.
-
FORMAT_FAILURE
The signature is not conformant to one of the base standards
-
POLICY_PROCESSING_ERROR
The formal policy file could not be processed (e.g. not accessible, not parsable, etc.)
-
UNKNOWN_COMMITMENT_TYPE
The signature was created using a policy and commitment type that is unknown to the SVA.
-
TIMESTAMP_ORDER_FAILURE
Constraints on the order of signature time-stamps and/or signed data object (s) time-stamps are not respected.
-
NO_SIGNER_CERTIFICATE_FOUND
The signer's certificate cannot be identified.
-
NO_CERTIFICATE_CHAIN_FOUND
No certificate chain has been found for the identified signer's certificate.
-
REVOKED_NO_POE
The signer's certificate was revoked at the validation date/time. The Signature Validation Algorithm cannot determine whether the signing time is before or after the revocation time.
-
REVOKED_CA_NO_POE
At least one certificate chain was found, but an intermediate CA certificate has been revoked.
-
OUT_OF_BOUNDS_NO_POE
The signer's certificate is expired or not yet valid at the validation date/time. The Signature Validation Algorithm cannot determine that the signing time is within the validity interval of the signer's certificate.
-
CRYPTO_CONSTRAINTS_FAILURE_NO_POE
At least one of the algorithms used in an element (e.g. the signature value, a certificate, etc.) to validate the signature or the size of the keys used in the algorithm are no longer considered reliable at the validation date/time. The Signature Validation Algorithm cannot determine whether the element was generated before or after the algorithm or the size of the keys were considered unreliable.
-
NO_POE
A proof of existence that proves whether a signed object was produced before a compromising event (e.g. broken algorithm) is missing
-
TRY_LATER
Insufficient information to fulfill all constraints. It may be possible to fulfill all constraints with additional revocation information that will be available at a later point of time.
-
NO_POLICY
The policy to use for validation could not be identified.
-
SIGNED_DATA_NOT_FOUND
Cannot obtain signed data.
-
INCOMPLETE_CERTIFICATE_CHAIN
The certificate's chain is incomplete. The Signature Validation Algorithm cannot determine whether the certificate is trusted.
-
CERTIFICATE_NO_REVOCATION_INFORMATION
The certificate has no revocation information. The Signature Validation Algorithm cannot determine whether the certificate has been revoked.
-
MISSING_REVOCATION_INFORMATION
No revocation information is available in the revocation information sources. The Signature Validation Algorithm cannot determine whether the certificate has been revoked.
-
EXPIRED_NO_REVOCATION_INFORMATION
The certificate has expired and no revocation information is available in the signature or document. The Signature Validation Algorithm cannot determine whether the certificate has been revoked.
-
UNTRUSTED
The certificate is not trusted because there is no valid path to a trust anchor.
-
GENERIC
Any other reason
-
-
Method Details
-
values
Returns an array containing the constants of this enum type, in the order they are declared.- Returns:
- an array containing the constants of this enum type, in the order they are declared
-
valueOf
Returns the enum constant of this type with the specified name. The string must match exactly an identifier used to declare an enum constant in this type. (Extraneous whitespace characters are not permitted.)- Parameters:
name- the name of the enum constant to be returned.- Returns:
- the enum constant with the specified name
- Throws:
IllegalArgumentException- if this enum type has no constant with the specified nameNullPointerException- if the argument is null
-