XMLSec library does support the de-attached signatures. You just need to prepare a template with a non-empty URI in the <dsig:Reference/> element :) Read the spec one more time and look at the examples from the test suite :) Aleksey P.S. You will have a much better chance to get you message delivered to mailing list if you subscribe to it :)