W3C XML Signature recommendation doesn't mention ASN.1 encoding for DSA: http://www.w3.org/TR/xmldsig-core/#DSAKeyValue
http://www.w3.org/TR/xmldsig-core/#dsa-sha1 so I would say that proper signing procedure is not to encode DSA signature in ASN.1 after signing and before Base64 encoding. However, we could consider adding support for ASN.1 encoded DSA signatures during verification process. Berin? Others? Best regards, Milan
