Aloaha PDF Signature Bulk Validator

The Aloaha PDF Signature Bulk Validator is an commercial add-on to the popular Aloaha sign!. It is being delivered as a simple .exe file which can be started with some parameters to bulk validate PDF signatures. 

Validated PDF Documents are being sorted into sub directories.

To validate a complete directory of PDF Documents just start AloSiVal.exe <Directory>. It is IMPORTANT that <Directory> ends with a backslash!. For example AloSiVal.exe C:\PDF\

Validated documents will be sorted into subdirectories under \ValidatedPDF\. This subdirectory can be configured in HKEY_LOCAL_MACHINE\SOFTWARE\Aloaha\Validator\TargetDir.

Suspicious PDF Documents are sorted into the subdirectory suspicious. Such documents have been edited AFTER having been signed.  

For evey status of a signature a bitmask representing the signature quality is being created and used as the directory name. In HKEY_LOCAL_MACHINE\SOFTWARE\Aloaha\Validator it is possible to give those directories a clear text name.

Possible Bitmask Values

• IS NOT TIME VALID = &H1
  This certificate or one of the certificates in the certificate chain is not time valid.
• IS NOT TIME NESTED = &H2
  Certificates in the chain are not properly time nested.
• IS REVOKED = &H4
  Trust for this certificate or one of the certificates in the certificate chain has been revoked.
• NOT SIGNATURE VALID = &H8
  The certificate or one of the certificates in the certificate chain does not have a valid signature.
• NOT VALID FOR USAGE = &H10
  The certificate or certificate chain is not valid for its proposed usage.
• IS UNTRUSTED ROOT = &H20
  The certificate or certificate chain is based on an untrusted root.
• REVOCATION STATUS UNKNOWN = &H40
  The revocation status of the certificate or one of the certificates in the certificate chain is unknown.
• IS CYCLIC = &H80
  One of the certificates in the chain was issued by a certification authority that the original certificate had certified.
• INVALID EXTENSION = &H100
  One of the certificates has an extension that is not valid.
• INVALID POLICY CONSTRAINTS = &H200
  The certificate or one of the certificates in the certificate chain has a policy constraints extension, and one of the issued certificates has a disallowed policy mapping extension or does not have a required issuance policies extension.
• INVALID BASIC CONSTRAINTS = &H400
  The certificate or one of the certificates in the certificate chain has a basic constraints extension, and either the certificate cannot be used to issue other certificates, or the chain path length has been exceeded.
• INVALID NAME CONSTRAINTS = &H800
  The certificate or one of the certificates in the certificate chain has a name constraints extension that is not valid.
• HAS NOT SUPPORTED NAME CONSTRAINT = &H1000
  The certificate or one of the certificates in the certificate chain has a name constraints extension that contains unsupported fields. The minimum and maximum fields are not supported. Thus minimum must always be zero and maximum must always be absent. Only UPN is supported for an Other Name. The following alternative name choices are not supported:
  - X400 Address
  - EDI Party Name
  - Registered Id
• HAS NOT DEFINED NAME CONSTRAINT = &H2000
  The certificate or one of the certificates in the certificate chain has a name constraints extension, and a name constraint is missing for one of the name choices in the end certificate.
• HAS NOT PERMITTED NAME CONSTRAINT = &H4000
  The certificate or one of the certificates in the certificate chain has a name constraints extension, and there is not a permitted name constraint for one of the name choices in the end certificate.
• HAS EXCLUDED NAME CONSTRAINT = &H8000
  The certificate or one of the certificates in the certificate chain has a name constraints extension, and one of the name choices in the end certificate is explicitly excluded.
• IS OFFLINE REVOCATION = &H1000000
  The revocation status of the certificate or one of the certificates in the certificate chain is either offline or stale.
• NO ISSUANCE CHAIN POLICY = &H2000000
  The end certificate does not have any resultant issuance policies, and one of the issuing CA certificates has a policy constraints extension requiring it.
• IS PARTIAL CHAIN = &H10000
  The certificate chain is not compete.
• CTL IS NOT TIME VALID = &H20000
  A CTL used to create this chain was not time valid.
• CTL IS NOT SIGNATURE VALID = &H40000
  A CTL used to create this chain did not have a valid signature.
• CTL IS NOT VALID FOR USAGE = &H80000
  A CTL used to create this chain is not valid for this usage.
  

 Every possible value can be mapped to a clear text name in HKEY_LOCAL_MACHINE\SOFTWARE\Aloaha\Validator

Company
Contact Person
E-Mail
Telephone
Fax
Comment: Please enter the code shown on the left in the following field: (This is to prevent automatic spammers)

Aloaha Software / Products / Aloaha sign! / Signature Bulk Validator