Basic question about functionality of SSF

Hello,

we are working on a process with external party to receive a csv file from there.

The file will be duplicated and the duplicate converted into a data file which we use to import data into an R/3 system.

Now the csv file will be enhanced by a pkcs7 based signature which we have to verify. After successful verification the duplication step will be started and the file will be moved to the archive.

My question is, because I have never worked with SSF:

Is the SSF / the SAPSECULIB able to do such a verification and if yes, are there any conditions for use of SSF, e.g. third party products (for which purpose)?

Best regards

Dirk