Pkcs7Sha1Signature Class

Apitron PDF Kit help
Apitron.PDF.Kit library for .NET
Security handlers may use public-key encryption technology to encrypt a document (or strings and streams within a document). When doing so, specifying one or more lists of recipients, where each list has its own unique access permissions may be done. Only specified recipients shall open the encrypted document or content, unlike the standard security handler, where a password determines access. The permissions defined for public-key security handlers are shown in Table 24 in, "Public-Key Encryption Dictionary" (PDF spec.). Public-key security handlers use the industry standard Public Key Cryptographic Standard Number 7 (PKCS#7) binary encoding syntax to encode recipient list, decryption key, and access permission information. The PKCS#7 specification is in Internet RFC 2315, PKCS #7: Cryptographic Message Syntax, Version 1.5 (see the Bibliography in PDF spec.). When encrypting the data, each recipient’s X.509 public key certificate (as described in ITU-T Recommendation X.509; see the Bibliography in PDF spec.) shall be available. When decrypting the data, the conforming reader shall scan the recipient list for which the content is encrypted and shall attempt to find a match with a certificate that belongs to the user. If a match is found, the user requires access to the corresponding private key, which may require authentication, possibly using a password. Once access is obtained, the private key shall be used to decrypt the encrypted data.
Inheritance Hierarchy


Namespace:  Apitron.PDF.Kit.Interactive.Forms.Signature
Assembly:  Apitron.PDF.Kit (in Apitron.PDF.Kit.dll) Version: (

public sealed class Pkcs7Sha1Signature : Signature

The Pkcs7Sha1Signature type exposes the following members.


Public methodPkcs7Sha1Signature(X509Certificate2)
Creates a new Pkcs7Sha1Signature and uses the given certificate to sign the document.
Public methodPkcs7Sha1Signature(X509Chain)
Creates a new Pkcs7Sha1Signature and uses the given chain to sign the document.
Public methodPkcs7Sha1Signature(Pkcs12Store)
Creates a new Pkcs7Sha1Signature and uses the first key from the store to sign the document.
Public methodPkcs7Sha1Signature(Pkcs12Store, String)
Creates a new Pkcs7Sha1Signature and uses the given key from the store to sign the document.

Public propertyDistinguishedName
The subject Distinguished Name (DN) that shall be present within the certificate for it to be acceptable for signing, described in RFC 3280.
(Inherited from Signature.)
Public propertyName
The subject name in the signing certificate (the element "CN")
(Inherited from Signature.)
Public propertySignDate
The time of signing. Depending on the signature handler, this may be a normal unverified computer time or a time generated in a verifiable way from a secure time server. This value should be used only when the time of signing is not available in the signature.
(Inherited from Signature.)
Public propertySoftwareModuleName
Gets or sets the name of the software module used to create the signature. Has meaning only for Pkcs7DetachedSignature.
(Inherited from SignatureHandler.)
Public propertyTimeStampingAuthority
Gets the time stamping authority.
(Inherited from SignatureHandler.)

The SHA1 digest of the document’s byte range shall be encapsulated in the PKCS#7 SignedData field with ContentInfo of type Data. The digest of that SignedData shall be incorporated as the normal PKCS#7 digest.
See Also