Hello all and personally Nick,
I want to draw your attention to the following problem.
There is only limited possible transformation between CAdES-X Type 1
signature and CAdES-X Long Type 1 signature. Notably, one must store
certificate and revocation values for signature-timestamp validation in the
timestamp itself, hence, after receiving CAdES-C-timestamp one cannot add or
remove these values from signature-timestamp.
An obvious solution is to allow to include timestamp validation data in
certificate-values and revocation-values attributes of the signature itself.
What do you think?
Pavel Smirnov
Crypto-Pro
Tel./Fax: +7 495 780-4820
WWW: <http://www.cryptopro.ru/> http://www.CryptoPro.ru
e-mail: <mailto:spv(_at_)CryptoPro(_dot_)ru> spv(_at_)CryptoPro(_dot_)ru