Class CadesPolicySpec.AttributeGenerationSpec
Inherited Members
Namespace: Lacuna.Pki.Cades
Assembly: Lacuna.Pki.dll
Syntax
public class AttributeGenerationSpecConstructors
AttributeGenerationSpec()
Declaration
public AttributeGenerationSpec()Properties
ArchiveTimestamp
Denotes whether an archive timestamp MUST be added (failure throws exception), or SHOULD be added (failure generates a warning) or SHOULD NOT be added.
Declaration
public GenerationRequirementLevels ArchiveTimestamp { get; set; }Property Value
| Type | Description |
|---|---|
| GenerationRequirementLevels |
CadesCTimeStamp
Denotes whether a cades-c-timestamp attribute MUST be added (failure throws exception), or SHOULD be added (failure generates a warning) or SHOULD NOT added. NOTE: if CadesCTimeStamp is set to Must or Should, then the properties IncludeCompleteCertificateReferences and IncludeCompleteRevocationReferences must be set to true.
Declaration
public GenerationRequirementLevels CadesCTimeStamp { get; set; }Property Value
| Type | Description |
|---|---|
| GenerationRequirementLevels |
CertCrlsReferencesTimestamp
Denotes whether a certificates and CRLs references timestamp MUST be added (failure throws exception), or SHOULD be added (failure generates a warning) or SHOULD NOT be added.
Declaration
public GenerationRequirementLevels CertCrlsReferencesTimestamp { get; set; }Property Value
| Type | Description |
|---|---|
| GenerationRequirementLevels |
IncludeCertificatesInSignedData
The certificates to be included in the SignedData Certificates Set
Declaration
public InclusionLevel IncludeCertificatesInSignedData { get; set; }Property Value
| Type | Description |
|---|---|
| InclusionLevel |
IncludeCertificateValues
Whether or not to include a certificate-values attribute.
Declaration
public bool IncludeCertificateValues { get; set; }Property Value
| Type | Description |
|---|---|
| Boolean |
IncludeCompleteCertificateReferences
Whether or not to include the complete-certificate-references attribute.
Declaration
public bool IncludeCompleteCertificateReferences { get; set; }Property Value
| Type | Description |
|---|---|
| Boolean |
IncludeCompleteRevocationReferences
Whether or not to include the complete-revocation-references attribute.
Declaration
public bool IncludeCompleteRevocationReferences { get; set; }Property Value
| Type | Description |
|---|---|
| Boolean |
IncludeCrlsInSignedData
Whether or not to include the used CRLs in the SignedData Revocation Info Choices
Declaration
public bool IncludeCrlsInSignedData { get; set; }Property Value
| Type | Description |
|---|---|
| Boolean |
IncludeFullPathReferenceInSigningCertificateAttribute
Whether or not to include the certification full path on the SigningCertificate attribute
Declaration
public bool IncludeFullPathReferenceInSigningCertificateAttribute { get; set; }Property Value
| Type | Description |
|---|---|
| Boolean |
IncludeRevocationValues
Whether or not to include a revocation-values attribute.
Declaration
public bool IncludeRevocationValues { get; set; }Property Value
| Type | Description |
|---|---|
| Boolean |
IncludeSignaturePolicyIdentifier
Wheter or not to include the signature-policy-identifier signed attribute (CAdES-BES vs CADES-EPES)
Declaration
public bool IncludeSignaturePolicyIdentifier { get; set; }Property Value
| Type | Description |
|---|---|
| Boolean |
IncludeSigningCertificateAttribute
Whether or not to include the signing-certificate attribute (or signing-certificate-v2, depending on the digest algorithm being used).
Declaration
public bool IncludeSigningCertificateAttribute { get; set; }Property Value
| Type | Description |
|---|---|
| Boolean |
Remarks
Please note that the signing certificate attribute is mandated by CAdES. A signature without a signing certificate attribute cannot truly be considered a CAdES signature and is subject to known attacks (signer substitution attack). The default value for this property is true on all policies returned by the SDK. We highly recommend that you do not set this property to false.
IncludeSigningTime
Whether or not to include the signing-time signed attribute containing the time taken from the local machine.
Declaration
public bool IncludeSigningTime { get; set; }Property Value
| Type | Description |
|---|---|
| Boolean |
SignaturePolicyQualifiers
In case IncludeSignaturePolicyIdentifier is set to true, denotes which signature policy qualifiers should be included in the signature-policy-identifier attribute. Currently, only the Uri qualifier is supported.
Declaration
public CadesPolicySpec.SignaturePolicyQualifiers SignaturePolicyQualifiers { get; set; }Property Value
| Type | Description |
|---|---|
| CadesPolicySpec.SignaturePolicyQualifiers |
SignatureTimestamp
Denotes whether a signature-timestamp attribute MUST be added (failure throws exception), or SHOULD be added (failure generates a warning) or SHOULD NOT be added.
Declaration
public GenerationRequirementLevels SignatureTimestamp { get; set; }Property Value
| Type | Description |
|---|---|
| GenerationRequirementLevels |