Microsoft Edge PDF Reader - signature validation warning for official signatures
Since the last edge update we are running into the following issue, which triggers support tickets on our side. It seems that the edge internal PDF Reader now supports validation of digital PDF signatures. This new feature however is incomplete and causes a lot of confusion for edge users. "Official" signatures are labeled as "Unknown Signature" and "The validity of the signature is still unknown": "Official signatures" means qualified signatures from members of the EUTL - the European trust list as defined in ETSI TS 119 612 („Trusted Lists“): [...] the European Commission publishes a central list with links to the locations where the national trusted lists are published as notified by Member States. This central list, called the List Of Trusted Lists (LOTL), is available in both a human readable format and in a format suitable for automated (machine) processing XML. Parts of the edge PDF reader seems to come from *dobe itself which adds additional confusion since in their products (*dobe reader, acrobat etc) the signatures are correctly verified. They support this list for several years now (next to their own AATL list). I tried to find out whether this feature is 'work-in-progress' or it is a bug however the last published roadmap is quite old and doesn't give helpful information regarding this aspect. So my question is: Is full support of PDF signature validation including support of the EUTL planned and if so when?
MSEDGE "View the details of digital signatures in PDFs" not working
MSEDGE Version: 104.0.1293.70 (Official build) (64-bit) [Windows 10] PDFs tested: common e-invoice certificate-based digital signed PDFs, Word test PDFs normal or PDF/A compliant (with and without TLV signatures) MSEDGE config: via FLAG (Enable Digital Signature for PDF) or/and via Policy (PDFSecureMODE, https://docs.microsoft.com/en-us/DeployEdge/microsoft-edge-policies#pdfsecuremode ) None of the tested certificate-based digital signed PDFs opened by MSEDGE showed the top strip that allows the visualization and validation of the digital signature has the long publicized feature refers to. Does anyone have some feedback on this behavior? Why and when it should happen? Its publicized in the https://www.microsoftedgeinsider.com/en-us/whats-new on the "Try It" section, with the title "View the details of digital signatures in PDFs" (and even before since v90 or something like that) * https://techcommunity.microsoft.com/t5/articles/roadmap-for-pdf-reader-in-microsoft-edge/m-p/2175170 * https://docs.microsoft.com/en-us/deployedge/microsoft-edge-pdf#view-and-validate-certificate-based-digital-signatures * https://mspoweruser.com/edge-can-now-validate-digitally-signed-pdfs/
