santuario-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Milan Tomic" <mi...@setcce.org>
Subject RE: XML Security-C:: HCRYPTPROV DSS/RSA providers not set via Win CAPI CryptoX509 using just the PCCERT_CONTEXT cosntructor
Date Thu, 26 May 2005 06:22:47 GMT

W3C XML Signature recommendation doesn't mention ASN.1 encoding for DSA:

http://www.w3.org/TR/xmldsig-core/#DSAKeyValue

http://www.w3.org/TR/xmldsig-core/#dsa-sha1

so I would say that proper signing procedure is not to encode DSA
signature in ASN.1 after signing and before Base64 encoding.

However, we could consider adding support for ASN.1 encoded DSA
signatures during verification process. Berin? Others?

Best regards,
Milan



Mime
View raw message