public void VerifyExtendedSignatureUsingPublicationsFile()
{
KSI.Ksi ksi = GetKsi();
// Read the existing signature, assume it is extended
IKsiSignature signature = LoadExtendedSignature();
// We need to compute the hash from the original data, to make sure it
// matches the one in the signature and has not been changed
// Use the same algorithm as the input hash in the signature
IDataHasher dataHasher = new DataHasher(signature.GetAggregationHashChains()[0].InputHash.Algorithm);
dataHasher.AddData(File.ReadAllBytes("Resources/infile.txt"));
// Do the verification and check the result
VerificationPolicy policy = new PublicationBasedVerificationPolicy();
VerificationContext context = new VerificationContext(signature)
{
DocumentHash = dataHasher.GetHash(),
PublicationsFile = ksi.GetPublicationsFile(),
};
VerificationResult verificationResult = policy.Verify(context);
if (verificationResult.ResultCode == VerificationResultCode.Ok)
{
Console.WriteLine("VerifyExtendedSignatureUsingPublicationsFile > signature valid");
}
else
{
Console.WriteLine("VerifyExtendedSignatureUsingPublicationsFile > verification failed with error > " + verificationResult.VerificationError);
}
}
public void VerifyExtendedSignatureUsingPublicationsCode()
{
// Read the existing signature, assume it is extended
IKsiSignature signature = LoadExtendedSignature();
IDataHasher dataHasher = new DataHasher(signature.GetAggregationHashChains()[0].InputHash.Algorithm);
dataHasher.AddData(File.ReadAllBytes("Resources/infile.txt"));
// The trust anchor in this example is the publication code in Financial Times or on Twitter
PublicationData publicationData = new PublicationData("AAAAAA-CWYEKQ-AAIYPA-UJ4GRT-HXMFBE-OTB4AB-XH3PT3-KNIKGV-PYCJXU-HL2TN4-RG6SCC-3ZGSBM");
// Do the verification and check the result
VerificationPolicy policy = new PublicationBasedVerificationPolicy();
VerificationContext context = new VerificationContext(signature)
{
DocumentHash = dataHasher.GetHash(),
UserPublication = publicationData
};
VerificationResult verificationResult = policy.Verify(context);
if (verificationResult.ResultCode == VerificationResultCode.Ok)
{
Console.WriteLine("VerifyExtendedSignatureUsingPublicationsCode > signature valid");
}
else
{
Console.WriteLine("VerifyExtendedSignatureUsingPublicationsCode > signature verification failed with error > " + verificationResult.VerificationError);
}
}
public void VerifyExtendedSignatureUsingPublicationsFile()
{
KSI.Ksi ksi = GetKsi();
// Read the existing signature, assume it is extended
IKsiSignature signature = LoadExtendedSignature();
DataHash documentHash = KsiProvider.CreateDataHasher(signature.InputHash.Algorithm)
.AddData(File.ReadAllBytes("Resources/infile.txt"))
.GetHash();
// Do the verification and check the result
VerificationPolicy policy = new PublicationBasedVerificationPolicy();
VerificationContext context = new VerificationContext(signature)
{
DocumentHash = documentHash,
PublicationsFile = ksi.GetPublicationsFile(),
};
VerificationResult verificationResult = policy.Verify(context);
if (verificationResult.ResultCode == VerificationResultCode.Ok)
{
Console.WriteLine("VerifyExtendedSignatureUsingPublicationsFile > signature valid");
}
else
{
Console.WriteLine("VerifyExtendedSignatureUsingPublicationsFile > verification failed with error > " + verificationResult.VerificationError);
}
}
public void VerifyExtendedSignatureUsingPublicationsCodeAutoExtend()
{
// Read signature, assume to be not extended
IKsiSignature signature = LoadUnextendedSignature();
IDataHasher dataHasher = new DataHasher(signature.GetAggregationHashChains()[0].InputHash.Algorithm);
dataHasher.AddData(File.ReadAllBytes("Resources/infile.txt"));
PublicationData publicationData = new PublicationData("AAAAAA-CWYEKQ-AAIYPA-UJ4GRT-HXMFBE-OTB4AB-XH3PT3-KNIKGV-PYCJXU-HL2TN4-RG6SCC-3ZGSBM");
// Do the verification and check the result
VerificationPolicy policy = new PublicationBasedVerificationPolicy();
VerificationContext context = new VerificationContext(signature)
{
DocumentHash = dataHasher.GetHash(),
UserPublication = publicationData,
IsExtendingAllowed = true,
KsiService = GetKsiService(),
};
VerificationResult verificationResult = policy.Verify(context);
if (verificationResult.ResultCode == VerificationResultCode.Ok)
{
Console.WriteLine("VerifyExtendedSignatureUsingPublicationsCodeAutoExtend > signature valid");
}
else
{
Console.WriteLine("VerifyExtendedSignatureUsingPublicationsCodeAutoExtend > signature verification failed with error > " + verificationResult.VerificationError);
}
}
public void ExtendAndVerifyToUserProvidedPublicationTest(Ksi ksi)
{
PublicationBasedVerificationPolicy rule = new PublicationBasedVerificationPolicy();
PublicationData publicationData = new PublicationData("AAAAAA-CW45II-AAKWRK-F7FBNM-KB6FNV-DYYFW7-PJQN6F-JKZWBQ-3OQYZO-HCB7RA-YNYAGA-ODRL2V");
IKsiSignature extendedSignature = ksi.Extend(TestUtil.GetSignature(), publicationData);
VerificationContext context = new VerificationContext(extendedSignature)
{
UserPublication = publicationData
};
VerificationResult verificationResult = rule.Verify(context);
Assert.AreEqual(VerificationResultCode.Ok, verificationResult.ResultCode);
}
public void ExtendAndVerifyToUserProvidedPublicationNotInPublicationsFileTest(Ksi ksi)
{
PublicationBasedVerificationPolicy rule = new PublicationBasedVerificationPolicy();
// publication data that is not included in publications file. Time: 2016-07-12 00:00:00 UTC
PublicationData publicationData = new PublicationData("AAAAAA-CXQQZQ-AAPGJF-HGNMUN-DXEIQW-NJZZOE-J76OK4-BV3FKY-AEAWIP-KSPZPW-EJKVAI-JPOOR7");
IKsiSignature extendedSignature = ksi.Extend(TestUtil.GetSignature(), publicationData);
VerificationContext context = new VerificationContext(extendedSignature)
{
UserPublication = publicationData
};
VerificationResult verificationResult = rule.Verify(context);
Assert.AreEqual(VerificationResultCode.Ok, verificationResult.ResultCode);
}
public void InvalidExtendToUserProvidedPublicationFromTestCoreAllowExtendingTest(KsiService service)
{
PublicationBasedVerificationPolicy rule = new PublicationBasedVerificationPolicy();
// publication data from Test core. not included in publications file. Time: 2016-07-12 00:00:00 UTC
PublicationData publicationData = new PublicationData("AAAAAA-CXQQZQ-AAOSZH-ONCB4K-TFGPBW-R6S6TF-6EW4DU-4QMP7X-GI2VCO-TNGAZM-EV6AZR-464IOA");
VerificationContext context = new VerificationContext(TestUtil.GetSignature())
{
IsExtendingAllowed = true,
UserPublication = publicationData,
KsiService = service
};
VerificationResult verificationResult = rule.Verify(context);
Assert.AreEqual(VerificationResultCode.Fail, verificationResult.ResultCode);
Assert.AreEqual(VerificationError.Pub01, verificationResult.VerificationError);
}
public void ExtendAndVerifySignatureWithAggregationChainsOnly(Ksi ksi)
{
PublicationBasedVerificationPolicy rule = new PublicationBasedVerificationPolicy();
// signature contains only aggregation chains
IKsiSignature ksiSignature = TestUtil.GetSignature(Resources.KsiSignature_Ok_Only_Aggregtion_Chains);
IKsiSignature extendedSignature = ksi.Extend(ksiSignature);
PublicationData publicationData = ksi.GetPublicationsFile().GetNearestPublicationRecord(ksiSignature.AggregationTime).PublicationData;
VerificationContext context = new VerificationContext(extendedSignature)
{
UserPublication = publicationData
};
VerificationResult verificationResult = rule.Verify(context);
Assert.AreEqual(VerificationResultCode.Ok, verificationResult.ResultCode);
}
public void ExtendAndVerifyTest(Ksi ksi)
{
PublicationBasedVerificationPolicy policy = new PublicationBasedVerificationPolicy();
IKsiSignature ksiSignature = TestUtil.GetSignature();
IKsiSignature extendedSignature = ksi.Extend(ksiSignature);
PublicationData publicationData = ksi.GetPublicationsFile().GetNearestPublicationRecord(ksiSignature.AggregationTime).PublicationData;
VerificationContext context = new VerificationContext(extendedSignature)
{
UserPublication = publicationData,
KsiService = GetHttpKsiService()
};
VerificationResult verificationResult = policy.Verify(context);
Assert.AreEqual(VerificationResultCode.Ok, verificationResult.ResultCode);
}
