[xmlsec] Error with verification of signature.

Richard Salz rsalz at us.ibm.com
Thu Mar 16 05:10:58 PST 2006


> Also here is the Cononical SignedInfo. That I am trying to Sign.
> 
> <SignedInfo><CanonicalizationMethod
> Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315"></Canonicali
> ...

No it's not. :)  You have a space between the element name and the 
attribute, and c14n doesn't do that.

You generally can't cut/paste pieces of signatures directly into email, as 
client programs and/or mail systems will wordwrap, linebreak, and in 
general screw around with the content.  You have to do things like base64 
attachment, for example.

Do the References on your signature check out correctly?

        /r$

-- 
SOA Appliance Group
IBM Application Integration Middleware


> 
> Sean 
> -----Original Message-----
> From: xmlsec-bounces at aleksey.com [mailto:xmlsec-bounces at aleksey.com] On
> Behalf Of Sean Truman
> Sent: Wednesday, March 15, 2006 2:54 PM
> To: Aleksey Sanin
> Cc: xmlsec at aleksey.com
> Subject: RE: [xmlsec] Error with verification of signature.
> 
> I assume you are talking about the RSAKeyValue not being inside of
> KeyValue (This was a mistake in my part, I have read the specification,
> this was cut copy bug).
> 
> I still am unable to get it to verify. Any help is greatly appreciated.
> 
> 
> Sean
> 
> -----Original Message-----
> From: Aleksey Sanin [mailto:aleksey at aleksey.com] 
> Sent: Wednesday, March 15, 2006 12:36 PM
> To: Sean Truman
> Cc: xmlsec at aleksey.com
> Subject: Re: [xmlsec] Error with verification of signature.
> 
> Your signature does not have correct format. Please read the XMLDSig
> specification for details.
> 
> Aleksey
> _______________________________________________
> xmlsec mailing list
> xmlsec at aleksey.com
> http://www.aleksey.com/mailman/listinfo/xmlsec



More information about the xmlsec mailing list