santuario-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 45586] Signature verification fails, C14N transform returns null
Date Tue, 23 Sep 2008 20:52:53 GMT
https://issues.apache.org/bugzilla/show_bug.cgi?id=45586





--- Comment #15 from Brent Putman <putmanb@georgetown.edu>  2008-09-23 13:52:52 PST
---
I'm afraid I haven't worked much with enveloping so I don't know about special
issues there.  I would venture a guess that if the signing and validation are
done in the same XML contexts, then the standard inclusive c14n 1.0 is likely
ok.  However, if you want to take an enveloping Signature element and embed it
in some other document, then you've got issues there, I imagine.

Note also that there is a newer 1.1 version of the inclusive C14N algorithm. 
I'm not up on the differences with 1.0, just fyi.

http://www.w3.org/TR/xml-c14n11/

I believe it's supposed to be supported by the latest Apache Java xmlsec
(1.4.2).


-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

Mime
View raw message