Skip to main content
All docs
V24.2

DevExpress v24.2 Update — Your Feedback Matters

Our What's New in v24.2 webpage includes product-specific surveys. Your response to our survey questions will help us measure product satisfaction for features released in this major update and help us refine our plans for our next major release.

Take the survey Not interested

PdfLtvOptions Struct

In This Article

Contains options that allows you to request Long Term Validation (LTV) information for a signature certificate.

Namespace: DevExpress.Pdf

Assembly: DevExpress.Docs.v24.2.dll

NuGet Package: DevExpress.Document.Processor

#Declaration

public struct PdfLtvOptions

#Remarks

LTV (Long Term Validation) supplies a record of certificate state at the time it was signed. To verify the certificate, the signature must include a digital timestamp. Use the PdfPkcs7Signature.IsDocumentTimeStamp to check whether this is true. Note that certificate verification requires the OCSP or CRL responder to have its certificates online. Set TryFetchCrlOnline and TryFetchOcspOnline to true to obtain the certificate status in an OCSP/CRL response when you call the PdfDocumentSigner.VerifyLtv(PdfLtvOptions) method.

The following example executes an LTV check for a signature from the “Signed_file.pdf” file:

using DevExpress.Office.DigitalSignatures;

namespace ConsoleApp {
    internal class Program {
        static void Main(string[] args) {
            VerifyLTV();
        }
        public static void VerifyLTV(){
            using (PdfDocumentSigner documentSigner = new PdfDocumentSigner("Signed_file.pdf")){
                PdfLtvOptions options = new PdfLtvOptions(){
                    TryFetchCrlOnline = true,
                    TryFetchOcspOnline = true,
                    VerifyEntireCertificateChain = true,
                };
                var result = documentSigner.VerifyLtv(options);
                foreach (var entry in result){
                    Console.WriteLine("Signature Name: {0}", entry.SignatureFieldName);
                    Console.WriteLine("Certificate in chain: {0}", entry.CertificateRevocationResults.Count);
                    foreach(var revocation in entry.CertificateRevocationResults){
                        Console.WriteLine("Certificate {0}", revocation.Key.Subject);
                        Console.WriteLine("Is certificate revoked?: {0}", revocation.Value.IsCrlRevoked);
                        if (revocation.Value.IsCrlRevoked)
                            Console.WriteLine("Is CRL found online?: {0}", revocation.Value.IsCrlFoundOnline);
                        Console.WriteLine("OCSP Response Status: {0}", revocation.Value.OcspRevocationStatus);
                        if (revocation.Value.OcspRevocationStatus != PdfOcspRevocationStatus.None)
                            Console.WriteLine("Is OCSP found online?: {0}", revocation.Value.IsOcspFoundOnline);
                        Console.WriteLine();
                    }
                }
            }
        }
    }
}       
See Also