Secure XML: The New Syntax for Signatures and Encryption

10.5. Processing Rules

The XMLDSIG standard defines the steps required to produce a Signature element and verify a Signature element. These steps are not very surprising, as the following subsections explain.

10.5.1. Signature Generation

Signature generation consists of two parts. First, you need to generate the Reference elements to go into SignedInfo. Second, you need to construct SignedInfo, sign it, and create the Signature element. These steps must occur in that order.

Although the XML Digital Signature standard does not require it, real-world XMLDSIG subroutine libraries will probably include an entry for generating a Manifest element as well as a Signature element. This entry would involve exactly the same Reference element generation ...

Get Secure XML: The New Syntax for Signatures and Encryption now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Secure XML: The New Syntax for Signatures and Encryption by Donald E. Eastlake, Kitty Niles

10.5. Processing Rules

10.5.1. Signature Generation

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly