Signature invalid only in Adobe - Other programs are verifying the signature

Report · Sep 07, 2023

I've got a PDF. I am signing it and then add another signature. The first becomes invalid due to changes in the pdf. This happens even though nothing has changed in the byterange of the signature.

This also happens when adding dss information after the signature.

The problem is only visible in Adobe Reader. Other pdf signature verifing softwares are verifying my signatures. F.e. the EU service: https://ec.europa.eu/digital-building-blocks/DSS/webapp-demo/validation

What can I do make adobe verify the signature?

An example PDF is attached:

"eep_GdPicture.pdf" -> unsigned original

"eep_GdPicture_signed.pdf" -> two invalid (says only adobe) signatures

Report · Sep 19, 2023

I haven't found a solution yet. Does anyone have an idea?

Report · Feb 05, 2024

I found something which is opposite to this. I created a PDF with multiple signatures and seal, one of the signatures is qualified. The Acrobat Reader says that this signature is okay and qualified. The Validation Authorities say that the status of this signature is "indeterminate". But the result of the Acrobat Reader is not an official result, so the result of the Validation Authorities shall be considered as valid. Consequently the validation process in Acrobat Reader is wrong.https://drive.google.com/file/d/1gY66R7M_QrfqIGcVGAVdBJwoMAzfpqhj/view?usp=sharing https://drive.google.com/file/d/1OBd7G3wF_q6L3wMFSxAuatEZton2Uu20/view?usp=sharing

https://drive.google.com/file/d/1OBd7G3wF_q6L3wMFSxAuatEZton2Uu20/view?usp=sharing

Any idea?

Best Regards,

Peter

Report · Feb 05, 2024

Hello Peter,

it seems that the last certificate that you are using is not in the EU or Adobe Trust list. Therefore the authorities cannot determine the validity of the signature.

Szia,
Chris

Report · Feb 05, 2024

Yes, this is my problem also, because it was issued our National Citizen CA which is listed in the EU Trust List...

Any other idea?

Best Regards,

Peter

Report · Feb 05, 2024

by the way, the third signature is advanced, not qualified, it is true, but the problematic signature is the second one, which is qualified by Acrobat Reader and indeterminate by Validation Authorities. I created it by Acrobat Reader...