PDFlib PLOP DS Releases

Released: May 8, 2020

Updates in 5.4

Features

  • Support of proxy servers for network access.
  • Does not create a separate PDF update for the DSS since some signature validation tools complained that 'Signature doesn't cover whole document'.
  • Enables transport compression for CRLs and OCSP to accelerate network transmission.
  • Adds workaround for misconfigured CAs when downloading CRLs.

Released: Sep 7, 2018

Updates in 5.3

Features

  • Support for signing with Amazon CloudHSM.
  • PKCS#11 improvements for common security tokens.
  • Support PSS encoding scheme for RSA signatures via PKCS#11.
  • Improvements for LTV signatures in certain usage scenarios with OCSP responders.
  • Updated language bindings and platform support.
  • pCOS interface 12 with support for identifying upcoming ISO standards.
  • Added the pCOS command-line tool.
  • Improved PDF optimization.

Fixes

  • Bug fixes for Unicode support in digital ID passwords and file names...

Released: Feb 23, 2017

Updates in 5.2

Features

Several enhancements for digital signatures and certificate security including the following:

  • Supports EMSA-PSS encoding scheme for RSA signatures.
  • Supports OAEP for RSA certificate security.
  • Reject input documents with certification signatures and permissions=nochanges unless the "sacrifice" option has been supplied to avoid breaking existing certification signature.
  • No longer requires "conformance=extended" for NIST-15 elliptic curves other than P-256/P-384/P-521 since these are...

Released: May 24, 2016

Updates in V5.1

Features

  • Updated time-stamping support according to RFC 5816 (SigningCertificateV2/ESSCertIDv2).
  • Optimized file size and processing speed for generating signatures.
  • Timing options for OCSP.
  • Support for indirect CRLs.
  • Made CRL retrieval more robust, e.g. unexpected HTTP headers.
  • Workarounds in the PKCS#11 engine to handle behavior of certain token models.
  • PKCS#11 improvements for multi-threaded signing applications.
  • Support for signing with a Hardware Security Module (HSM).
  • Create PAdES/CAdES...