At 2011-11-19 05:34 -0800, Si St wrote:
Question:
Is there any peculiarity during the process of digesting and signing
that digest that is easy to miss as to xmlsec or all signing procedure
as well?
Should the attribute from the <Signature> element (the xmlns=) be
transferred to <SignedInfo> to become <SignedInfo
xmlns="http://www.w3.org/2000/09/xmldsig#";> or is this a misnomer? In
case this is correct, this "new" element constitutes then the part of
the whole SignedInfo that should be canonicalized and hashed all
together.
The following is not an attribute, it is a namespace declaration:
xmlns="http://www.w3.org/2000/09/xmldsig#";
It is not considered in the list of attributes of the element, even
though it looks like and smells like an attribute.
I'm not really sure what you are asking, but I'm hoping this
clarification will answer your question.
. . . . . . . . . . Ken
--
Contact us for world-wide XML consulting and instructor-led training
Free 5-hour video lecture: XSLT/XPath 1.0 & 2.0 http://ude.my/t37DVX
Crane Softwrights Ltd. http://www.CraneSoftwrights.com/z/
G. Ken Holman mailto:[email protected]
Google+ profile: https://plus.google.com/116832879756988317389/about
Legal business disclaimers: http://www.CraneSoftwrights.com/legal
_______________________________________________
xmlsec mailing list
[email protected]
http://www.aleksey.com/mailman/listinfo/xmlsec
