[xmlsec] Handling the SignedInfo element for signing

Si St sigbj-st at operamail.com
Sat Nov 19 05:34:35 PST 2011


Question:
Is there any peculiarity during the process of digesting and signing
that digest that is easy to miss as to xmlsec or all signing procedure
as well? 
Should the attribute from the <Signature> element (the xmlns=) be
transferred to <SignedInfo> to become <SignedInfo
xmlns="http://www.w3.org/2000/09/xmldsig#"> or is this a misnomer? In
case this is correct, this "new" element constitutes then the part of
the whole SignedInfo that should be canonicalized and hashed all
together.
-- 
  Si St
  sigbj-st at operamail.com

-- 
http://www.fastmail.fm - The professional email service



More information about the xmlsec mailing list