PAdES

PAdES (PDF Advanced Electronic Signatures) is a set of restrictions and extensions to PDF and ISO 32000-1^[1] making it suitable for Advanced Electronic Signature. This is published by ETSI as TS 102 778.^[2]

Description

While PDF and ISO 32000-1 provide a framework for digitally signing their documents, PAdES specifies precise profiles making it compliant with the European eIDAS regulation (Regulation on electronic identification and trust services for electronic transactions in the internal market). The eIDAS regulation enhances and repeals the Electronic Signatures Directive 1999/93/EC.^[3]^[4] EIDAS is legally binding in all EU member states since July 2014. An electronic signature that has been created in compliance with eIDAS has the same legal value as a handwritten signature.^[3]

An electronic signature, technically implemented based on PAdES has the status of an advanced electronic signature. This means that^[5]

it is uniquely linked to the signatory;
it is capable of identifying the signatory;
only the signatory has control of the data used for the signature creation;
it can be identified if data attached to the signature has been changed after signing.

One important benefit from PAdES is that electronically signed documents can remain valid for long periods, even if underlying cryptographic algorithms are broken.

PAdES recognizes that digitally-signed documents may be used or archived for many years – even many decades. At any time in the future, in spite of technological and other advances, it must be possible to validate the document to confirm that the signature was valid at the time it was signed – a concept known as Long-Term Validation (LTV).^[2]

The PAdES standard, ETSI Technical Specification (TS) 102 778, introduces a number of adaptations and extensions to PDF to satisfy the Directive's requirements. ETSI will feed these European-specific elements back into ISO for inclusion in the next release of the PDF standard, ISO 32000-2.

PAdES in the context of electronic signatures

An electronic signature is a paperless way to sign a document using a unique credential associated with a given person that is logically attached to or associated with the document, carrying an authority equivalent to a handwritten signature. It can be used to authenticate the signer as well as to detect any changes in the document made after it was signed. Electronic signatures are recognized as a catalyst to electronic commerce, notably Internet transactions. Availability of electronic signature techniques has already been a major stimulus to eBusiness and eGovernment. Digital signatures are a secure and legally binding means to implement electronic signatures through three cryptographic algorithms:^[5]

the key generating algorithm that randomly selects a private key and its corresponding public key
the signing algorithm that produces the digital signature from the message and private key
the signature verifying algorithm that uses the public key, message and digital signature to confirm the authenticity of the message.

For PDF documents, the signature data is incorporated directly within the signed PDF document, much as an ink signature becomes an integral part of a paper document, allowing the complete self-contained PDF file to be copied, stored and distributed as a simple electronic file. The signature can also have a visual representation as a form field, just as it might on a paper document. A significant advantage of PAdES is that it is being deployed by means of widely available PDF software: it does not require development or customization of specialized software.^[2]

PAdES is complementary to two other standards for an implementation of electronic signatures through cryptographically secured digital signatures in compliance to the eIDAS regulation.^[4] Like PAdES, they are legally binding in the European Union and suited for applications that do not involve human-readable documents: Cryptographic Message Syntax Advanced Electronic Signatures (CAdES) and XML Advanced Electronic Signatures (XAdES).^[6] The PAdES, CAdES and XAdES standards can be downloaded from the ETSI website ETSI download page.

Legal Admissibility

The EU recognizes three different eIDAS-compliant implementations of advanced electronic signatures through digital signatures: PAdES, XAdES and CAdES.^[7]

An electronic signature can carry legal effect and be used as evidence in legal proceedings. A qualified electronic signature shall have the equivalent legal effect of a handwritten signature. If the qualified certificate was issued in one Member State it shall be recognized as a qualified electronic signature in all other Member States.^[8]

PAdES Standard (ETSI TS 102 778)

The PAdES ETSI technical specification contains 6 parts:

Part 1: PAdES Overview – a framework document for PAdES
Part 2: PAdES Basic – Profile based on ISO 32000-1
Part 3: PAdES Enhanced – PAdES-Basic Electronic Signatures and PAdES-Explicit Policy Electronic Signatures Profiles
Part 4: PAdES Long Term – PAdES-Long Term Validation Profile
Part 5: PAdES for XML Content – Profiles for XAdES signatures of XML content in PDF files
Part 6: Visual Representations of Electronic Signatures

The PAdES standards can be downloaded from the ETSI download page.

Related, there is also TS 103 172: PAdES Baseline Profile

References

↑ "ISO 32000-1:2008 Document management -- Portable document format -- Part 1: PDF 1.7". International Organization for Standardization ISO. Retrieved 22 March 2016.
1 2 3 "ETSI TS 102 778-1 V1.1.1 (2009-07): Electronic Signatures and Infrastructures (ESI); PDF Advanced Electronic Signature Profiles; Part 1: PAdES Overview - a framework document for PAdES" (PDF). European Telecommunications Standards Institute ETSI. Retrieved 22 March 2016.
1 2 Turner, Dawn M. "EIDAS FROM DIRECTIVE TO REGULATION - LEGAL ASPECTS". Cryptomathic. Retrieved 1 March 2016.
1 2 THE EUROPEAN PARLIAMENT AND THE COUNCIL OF THE EUROPEAN UNION. "REGULATION (EU) No 910/2014 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 23 July 2014". Official Journal of the European Union. Retrieved 1 March 2016.
1 2 Turner, Dawn M. "Understanding the Major Terms Around Digital Signatures". Retrieved 22 March 2016.
↑ Turner, Dawn M. "Introduction into PAdES for Trust Services Providers". Cryptomathic. Retrieved 22 March 2016.
↑ Turner, Dawn M. "UNDERSTANDING THE MAJOR TERMS AROUND DIGITAL SIGNATURES". Cryptomathic. Retrieved 1 March 2016.
↑ "REGULATION (EU) No 910/2014 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL". Official Journal of the European Union. Article 25. Retrieved 10 October 2017.

External links

This article is issued from Wikipedia. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.

[ISO_32000-1-1] "ISO 32000-1:2008 Document management -- Portable document format -- Part 1: PDF 1.7". International Organization for Standardization ISO. Retrieved 22 March 2016.

[ETSI_TS_102_778-1_V1.1.1-2] 1 2 3 "ETSI TS 102 778-1 V1.1.1 (2009-07): Electronic Signatures and Infrastructures (ESI); PDF Advanced Electronic Signature Profiles; Part 1: PAdES Overview - a framework document for PAdES" (PDF). European Telecommunications Standards Institute ETSI. Retrieved 22 March 2016.

[DawnEIDAS-legal-aspects-3] 1 2 Turner, Dawn M. "EIDAS FROM DIRECTIVE TO REGULATION - LEGAL ASPECTS". Cryptomathic. Retrieved 1 March 2016.

[EU-EIDAS-Regulation-4] 1 2 THE EUROPEAN PARLIAMENT AND THE COUNCIL OF THE EUROPEAN UNION. "REGULATION (EU) No 910/2014 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 23 July 2014". Official Journal of the European Union. Retrieved 1 March 2016.

[Turner_-_Major_Terms_Digital_Signatures-5] 1 2 Turner, Dawn M. "Understanding the Major Terms Around Digital Signatures". Retrieved 22 March 2016.

[Turner-PAdES-6] Turner, Dawn M. "Introduction into PAdES for Trust Services Providers". Cryptomathic. Retrieved 22 March 2016.

[Understanding_EIDAS_Dawn-7] Turner, Dawn M. "UNDERSTANDING THE MAJOR TERMS AROUND DIGITAL SIGNATURES". Cryptomathic. Retrieved 1 March 2016.

[8] "REGULATION (EU) No 910/2014 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL". Official Journal of the European Union. Article 25. Retrieved 10 October 2017.