[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [dss-x] Question regarding our good old DSS test vectors
Hi Andreas,
I would also say that there is something strange here with the RefURI. If I am right, there are two possibilities for having a XMLSig dettached from what it signs: 1. The signed data object is in an external document from where the XMLSig is, and I guess that the RefUri should be something like: http://www.foo.com/fooDoc.html 2. The XMLSig is enveloped within a document. The signed data object is a subpart of the enveloping document, but is neither enveloping the nor enveloped by the XMLSig. In this case, however, I would say that the request should include the optional input for include the signature within the document and make the signature to sign a part of the document.... In the light of that, I would say that the request is bad... Do you share my views? Regards Juan Carlos. El 25/02/13 12:03, Andreas Kuehne escribió: Hi Juan Carlos et al., I'm just about to step thru the DSS test files and derive / verify assertions. But I'm just stucked with XMLDSig _detached_ requests: When requesting a detached signature does it make sense to include a RefURI with an intra-doc reference? In the document SR-X-DET-B64XML-SIGREF-URI.xml (attached) the signature target is given as <dss:SignedReference RefURI="#TestDoc" WhichDocument="DocId0"/> but in the response there is just a <Reference URI="#TestDoc"> [...] </Reference> I'm not very familiar with the concept of detached XMLDSig, but having just an intra-doc reference must render this signature as invalid, dosn't it? I would expect something like <Reference URI="DocId0#TestDoc"> Greetings, Andreas |
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]