Home > Articles > Web Services > XML

  • Print
  • + Share This
Like this article? We recommend

Using XML Digital Signatures

Signature generation (at the sender's end):

  1. Identify the resources that need to be signed.

  2. Apply transforms, if any to the resources.

  3. Apply digesting algorithms over the resource, and calculate the digest value.

  4. Repeat the above process for each resource that needs to be signed. Enclose the details in the <Reference> element.

  5. Collect all <Reference> elements inside the <SignedInfo> element. Indicate the canonicalization and signature methodologies.

  6. Canonicalize contents of <SignedInfo>, apply the signature algorithm, and generate the XML Digital signature.

  7. Enclose the signature within the <SignatureValue> element.

  8. Add relevant key information, if any, and produce the <Signature> element.

  9. Transmit the signature to the receiver.

Signature verification (at the receiver's end):

  1. Verify the signature contained in the <SignatureValue> element. Do this by calculating the digest of <SignedInfo> element, and apply the signature algorithm with the public key of the sender. This process can identify whether the signature is valid or not.

  2. If this process is successful, apply the digest algorithms to required resources, and recalculate the digest of the same. Compare these digest values with those inside the corresponding <Reference> tags.

  • + Share This
  • 🔖 Save To Your Account