[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Question regarding our good old DSS test vectors
Hi Juan Carlos et al.,
I'm just about to step thru the DSS test files and derive / verify
assertions. But I'm just stucked with XMLDSig _detached_ requests: When
requesting a detached signature does it make sense to include a RefURI
with an intra-doc reference?
In the document SR-X-DET-B64XML-SIGREF-URI.xml (attached) the signature
target is given as
<dss:SignedReference RefURI="#TestDoc" WhichDocument="DocId0"/>
but in the response there is just a
<Reference URI="#TestDoc">
[...]
</Reference>
I'm not very familiar with the concept of detached XMLDSig, but having
just an intra-doc reference must render this signature as invalid,
dosn't it?
I would expect something like
<Reference URI="DocId0#TestDoc">
Greetings,
Andreas
--
Andreas Kühne
phone: +49 177 293 24 97
mailto: kuehne@trustable.de
Trustable Ltd. Niederlassung Deutschland Ströverstr. 18 - 59427 Unna Amtsgericht Hamm HRB 5868
Directors Andreas Kühne, Heiko Veit
Company UK Company No: 5218868 Registered in England and Wales
<dss:SignRequest xmlns:dss="urn:oasis:names:tc:dss:1.0:core:schema" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"; RequestID="UPCRequestEnvelopingXMLSig_0"> <dss:OptionalInputs> <dss:SignatureType>urn:ietf:rfc:3275</dss:SignatureType> <dss:SignedReferences> <dss:SignedReference WhichDocument="DocId0" RefURI="#TestDoc"/> </dss:SignedReferences> </dss:OptionalInputs> <dss:InputDocuments> <dss:Document ID="DocId0"> <dss:InlineXML> <upc1:Root Id="TestDoc" xmlns:upc1="http://www.ac.upc.edu/namespaces/ns1"; xmlns:upc2="http://www.ac.upc.edu/namespaces/ns2";><upc1:Child1 xml:lang="EN">child1 content</upc1:Child1><upc2:Child2><upc1:Child21>child21 content</upc1:Child21><upc1:Child22>child22 ccontent</upc1:Child22></upc2:Child2><upc2:Child3><upc2:Child31>child31 content</upc2:Child31><upc2:Child32>child32 content</upc2:Child32></upc2:Child3></upc1:Root> </dss:InlineXML> </dss:Document> </dss:InputDocuments> </dss:SignRequest>
<dss:SignResponse xmlns:dss="urn:oasis:names:tc:dss:1.0:core:schema" Profile="http://www.ac.upc.edu/dss/core/basicProfile"; RequestID="UPCRequestEnvelopingXMLSig_0"><dss:Result><dss:ResultMajor>urn:oasis:names:tc:dss:1.0:resultmajor:Success</dss:ResultMajor></dss:Result><dss:SignatureObject><Signature xmlns="http://www.w3.org/2000/09/xmldsig#";><SignedInfo><CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315"; /><SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"; /><Reference URI="#TestDoc"><Transforms><Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"; /></Transforms><DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"; /><DigestValue>OSi5d6KGIfwscc0hg+cf0kyqzVU=</DigestValue></Reference></SignedInfo><SignatureValue>MjnkmnuyDgojMIt/avX2N4mZ8AV2Vk1CO7c3UB3I/t4hpWSu47cZlDTOY72drlv/RyBVqgugEdCj cQ/U44hrk3NJQgcsUgLxx4rkGSYL9ize+saBAqPudyLl5TUV5ZnUEANW3YV1Eap6Mts7I3jKangF 4JpKcUpiG2yHkI2k6xU=</SignatureValue><KeyInfo><X509Data><X509Certificate>MIIERDCCAyygAwIBAgIBATANBgkqhkiG9w0BAQUFADCB3jELMAkGA1UEBhMCQ0gxDjAMBgNVBAgT BUJlcm5lMQ4wDAYDVQQHEwVCZXJuZTEfMB0GA1UEChMWVW5pdmVyc2FsIFBvc3RhbCBVbmlvbjEa MBgGA1UEChMRRm9yIFRlc3QgVXNlIE9ubHkxHTAbBgNVBAsTFEVsZWN0cm9uaWMgUG9zdCBNYXJr MTMwMQYDVQQDEypVbml2ZXJzYWwgUG9zdGFsIFVuaW9uIFBpbG90IEVQTSBBdXRob3JpdHkxHjAc BgkqhkiG9w0BCQEWD0NBQWRtaW5AdXB1LmludDAeFw0wNTAxMjUxOTU3MTFaFw0xMDAxMjQxOTU3 MTFaMIHeMQswCQYDVQQGEwJDSDEOMAwGA1UECBMFQmVybmUxDjAMBgNVBAcTBUJlcm5lMR8wHQYD VQQKExZVbml2ZXJzYWwgUG9zdGFsIFVuaW9uMRowGAYDVQQKExFGb3IgVGVzdCBVc2UgT25seTEd MBsGA1UECxMURWxlY3Ryb25pYyBQb3N0IE1hcmsxMzAxBgNVBAMTKlVuaXZlcnNhbCBQb3N0YWwg VW5pb24gUGlsb3QgRVBNIFNpZ25hdHVyZTEeMBwGCSqGSIb3DQEJARYPQ0FBZG1pbkB1cHUuaW50 MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCt76rxkdwCDldyW0xpWgVEhmJPfxmovAWOhkZm iaTaRU2j83gOhVlhqL4/CIfuVMy2CNx3CNN5XomVknvt1/VyB4p9qpfUDQ9b3IRZk8gTSbMe+41s RnggqHadIizMkRN1p/VA8MWsJu8dPlBhCE0DsBaF3zptV2GIy3saM7cPPwIDAQABo4GOMIGLMAwG A1UdEwQFMAMCAQAwHQYDVR0OBBYEFHTznwFYH6CS8xuZZlvo+6p3eWWaMB8GA1UdIwQYMBaAFO0V ydJTZFy9p5n9OT6icSir2KhQMC4GA1UdHwQnMCUwI6AhoB+GHWh0dHA6Ly9jYTEudXB1LmludC9t YXN0ZXIuY3JsMAsGA1UdDwQEAwIHgDANBgkqhkiG9w0BAQUFAAOCAQEAMp2qzlZOxIU1LKV8mKb0 pjVgfVbSLFmCgPJPxRnZciLY+P5sMhpdAkGQdhm67dvwBNPisz3XlnC7U/JH6mFeXDhat9mMg5LO +9KlsKqZWmT9riMvCGKJeibMSyzM1sgwv3ib5/kSswDDMcEaOW5QjoytluZWt7cR4ice7aow1EF5 XdEqNYkTErFM6rhfqO1lwg5V3Oc8SrqwnznUaXhjjTTHnsiWGtP0ip++UwKH0T0NE3CYHIkakGtg Pd5q6LsIp4so3+cMpQGWKngf+/Dj2vag24QG7ohcXYM2y7hGhdbY34m5QzlJQr0r2H9MUsg3cne6 Z+X4hcmhG67sIX1yxA==</X509Certificate></X509Data></KeyInfo></Signature></dss:SignatureObject></dss:SignResponse>
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]