[xmlsec] Re: parsing signature.xml

Aleksey Sanin aleksey at aleksey.com
Fri Apr 3 10:07:48 PST 2009

Sorry, I am not sure I understand the question about the online
tool. Could you please give more details? E.g. error messages
you see?

Regarding things verified... Yes, xmlsec verifies the signature
according to XMLDsig standard and also performs the certificates
chain verification.


Ashish Agrawal wrote:
> On Fri, Apr 3, 2009 at 3:48 PM, Ashish Agrawal <meetashish at gmail.com 
> <mailto:meetashish at gmail.com>> wrote:
>     Hi Aleksey,
>     I ve a doubt on the sample implementation which is present at
>     http://www.aleksey.com/xmlsec/api/xmlsec-verify-with-x509.html.
>     My understanding is, the xml file is the signature.xml file which
>     contains the signatureValue and the x509 certificates,
>     when it asks for another pem certifaicate does it mean to get the
>     root CA certificate which has signed one of the x509 cert present in
>     the signature.xml file.
>     also when we say verification (xmlSecDSigCtxVerify) what all things
>     are verified from the signature.xml, does it do
>     1. signatureValue verification
>     2. root chain verification ?
>     can u let me know is there is nything else that is verified ?
>     ~Regards,
>     Ashish

More information about the xmlsec mailing list