Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
docpublic:systemes:signelec [2014/04/24 20:59] procacci@tem-tsp.eu [Références] |
docpublic:systemes:signelec [2014/05/09 08:11] (current) procacci@tem-tsp.eu [Usage] |
||
|---|---|---|---|
| Line 24: | Line 24: | ||
| * http:// | * http:// | ||
| * http:// | * http:// | ||
| + | |||
| + | === Reglementation === | ||
| + | |||
| + | * https:// | ||
| + | * http:// | ||
| + | |||
| + | |||
| + | ===== JSignPdf ===== | ||
| + | |||
| + | * http:// | ||
| + | ==== raisons ==== | ||
| + | |||
| + | choix de JsignPdf principalement pour: | ||
| + | |||
| + | - JSignPdf is open-source software and can be freely used in both private and business sectors | ||
| + | - JSignPdf is released under Mozilla Public License (version 1.1 or later) and GNU LGPL (version 2.1 or later). | ||
| + | - visible signatures - image and/or description located visualy in a PDF file (page and position can be specified) | ||
| + | - support for batch processing (controlled by command line arguments, without GUI) | ||
| + | |||
| + | Cela correspond bien au choix " | ||
| + | |||
| + | ==== Usage ==== | ||
| + | |||
| + | Example d' | ||
| + | |||
| + | Parametrage du logiciel avec nos certificats | ||
| + | |||
| + | {{: | ||
| + | |||
| + | positionnement d'un signature visible | ||
| + | |||
| + | {{: | ||
| + | |||
| + | Exemple de fichier signé, cf bas de la 2eme page | ||
| + | |||
| + | {{: | ||
| + | |||
| + | Potentiel probleme de verification d'une signature par acrobat Reader lié a l' | ||
| + | http:// | ||
| + | |||
| + | {{: | ||
| + | |||
| + | {{: | ||
| + | |||
| + | {{: | ||
| + | |||
| + | En indiquant dans acrobat reader via options=> | ||
| + | |||
| + | {{: | ||
| + | |||
| + | Alors la signature est maintenant correctement verifiée | ||
| + | |||
| + | {{: | ||
| + | |||
| + | ===== Signature en ligne de commande openssl ===== | ||
| + | |||
| + | Exemple inspiré de http:// | ||
| + | |||
| + | 1) Signature avec la clé privée | ||
| + | < | ||
| + | $ openssl dgst -binary -out article-jres-84-6-signature.sig -sign ../ | ||
| + | |||
| + | $ ls -ltr | tail -2 | ||
| + | -rw-r--r--. 1 jehan 1000 316494 27 avril 12:42 article-jres-84-6.pdf | ||
| + | -rw-r--r--. 1 jehan 1000 256 27 avril 12:47 article-jres-84-6-signature.sig | ||
| + | </ | ||
| + | |||
| + | 2) Extraction de la clée publique du certificat correspondant à la clée privée ci-dessus | ||
| + | |||
| + | < | ||
| + | $ openssl x509 -pubkey -noout -in ../ | ||
| + | $ ls -ltr | tail -1 | ||
| + | -rw-r--r--. 1 jehan 1000 451 27 avril 12:50 cert-2233-MTIMT-pubkey-format.pem | ||
| + | </ | ||
| + | |||
| + | 3) Verification avec la clé publique de la signature (externe au document initial) | ||
| + | |||
| + | < | ||
| + | $ openssl dgst -signature article-jres-84-6-signature.sig -verify cert-2233-MTIMT-pubkey-format.pem article-jres-84-6.pdf | ||
| + | Verified OK | ||
| + | </ | ||
| + | |||
| + | |||
| + | |||
| + | |||
