# Sealing formats & file types ## PAdES - PDF Advanced Electronic Signature ### Packaging * Internally Detached ### Profile * PAdES-BES → Basic signature, contains the signer’s certificate but no timestamp or additional validation data. * PAdES-T → PAdES-BES + a timestamp, proving when the signature was created. * PAdES-Timestamp → Timestamp applied to the document without a signature (used for proving existence at a given time). * PAdES-LT → PAdES-T + OCSP/CRL validation data to ensure that the certificate was valid at the time of signing. Ensures the document remains valid without requiring external verification. * PAdES-LTV → PAdES-LT + archival timestamps for full archival support. ### File Types * .pdf ## XAdES - XML Advanced Electronic Signatures ### Packaging * Detached, * Enveloped, * Enveloping ### Profile * XAdES-BES → Basic signature, contains the signer’s certificate but no timestamp or additional validation data. * XAdES-EPES → XAdES-BES + a reference to a specific signature policy for validation. * XAdES-T → XAdES-BES + a timestamp, proving when the signature was created. * XAdES-C → XAdES-T + OCSP/CRL validation data to ensure that the certificate was valid at the time of signing. * XAdES-X → XAdES-C + a timestamp covering the entire signature structure, ensuring long-term validity. * XAdES-XL → XAdES-X + all necessary certificate and revocation data embedded, making the signature independently verifiable even without external servers. * XAdES-A → XAdES-XL + archival timestamps, periodically updated to extend the validity of the signature indefinitely. ### File Types * .xml * any binary file (for Detached and Enveloping packaging only) ## CAdES - CMS Advanced Electronic Signature ### Packaging * Detached, * Internally Detached, * Enveloped, * Enveloping ### Profile * CAdES-BES → Basic signature with signer's certificate but no timestamp or additional validation data. * CAdES-T → CAdES-BES + a timestamp, proving when the signature was created. ### File Types * any (including .tiff \[type 7]) ## JAdES - JSON Advanced Electronic Signature ### Packaging * Detached, * Enveloped ### Profile * JADES-BES → Basic signature with signer's certificate but no timestamp or additional validation data. ### File Types * .json ## ASiC - Associated Signature Containers ### Packaging * Detached, * Enveloped ### Profile * ASiC-BES → Basic signature with signer's certificate but no timestamp or additional validation data. * ASiC-T → ASiC-BES + a timestamp, proving when the signature was created. * ASiC-LT → ASiC-T + OCSP/CRL validation data to ensure that the certificate was valid at the time of signing. Ensures the document remains valid without requiring external verification. * ASiC-LTA → ASiC-LT + archive timestamps for full archival support. ### File Types * container with any file type ## Authenticode - Microsoft code-signing Digital signature format used to determine the origin and integrity of software binaries. ### Packaging * Enveloped ### Profile * BES → Basic signature with signer's certificate but no timestamp or additional validation data. (Standard Code Signing) * T → BES + a timestamp, proving when the signature was created. (Timestamped Code Signing) ### File Types * .exe * .msi * .dll * .cab * .ocx --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.signius.eu/manuals/signius-sealing-server-and-client/sealing-formats-and-file-types.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.