[xmlsec] DSA Signatures

Timothy Legge timlegge at gmail.com
Mon Jan 4 09:07:14 PST 2021


This is somewhat off topic as it is related to my maintenance of the
Perl XML::Sig module.

DSA signatures are a base64 encoded concatenation of the r and s octet
streams.  I can sign and verify DSA signatures with XML::Sig or xmlsec
but occasionally the DSA signature validation fails (for both XML::Sig
and xmlsec at the same time).

I assume something is getting lost when I concatenate  r and s before
it is base64 encoded.  Any thoughts based on how xmlsec generates the
base64 encoded DSA signature?



More information about the xmlsec mailing list