No signature process is complete with its counterpart, validation of the signature. The AdES Signature Validation provides an easy and consistent way to validate signatures based on various document / data types.
The validation is based on the ETSI EN 319 102-1 - Electronic Signatures and Infrastructures (ESI); Procedures for Creation and Validation of AdES Digital Signatures.
The status on the full validation of one of the signature in the context of a particular signature validation policy can be:
|TOTAL-PASSED||when the cryptographic checks of the signature (including checks of hashes of individual data objects that have been signed indirectly) succeeded as well as all checks prescribed by the signature validation policy have been passed|
|TOTAL-FAILED||the cryptographic checks of the signature failed (including checks of hashes of individual data objects that have been signed indirectly), or it is proven that the generation of the signature was after the revocation of the signing certificate, or because the signature is not conformant to one of the base standards to the extent that the cryptographic verification building block is unable to process it|
|INDETERMINATE||the results of the performed checks do not allow to ascertain the signature to be TOTAL-PASSED or TOTAL-FAILED|
For more information about the DSS framework implementation visit official documentation.