XML Signature is quite complicated standard. You could not simply
check the signature by calculating the digest of whole XML document.
OpenSSL does not support XML DSig. Probably you want to use some
other library. For example, you can try one I wrote:
http://www.aleksey.com/xmlsec
Aleksey Sanin [EMAIL PROTECTED]
http://www.aleksey.com/xmlsec
[EMAIL PROTECTED] wrote:
Hi,
I have an XML application (works only with MSIE) which signs a html form with the
users
private key.. Now I want to verify the signaturevalue on the server (Sun Solaris
2.8).
I've succeeded in extracting the public key but I can't find the rigth openssl
(version 0.9.6c)
options to check the signaturevalue.
Probably the format of the signaturevalue is wrong:
dsig:SignatureValuegQBugbr5aenwu01IvkMBJKsshiwrWUZ/N+gdESuXvWv2b324H7i
EZ8QOcxAhT78yS6EVtvGTcbUtHuIx99eqG01HRMavyP0P24BqvkK8nqONJY3GO3bDdLjnVxJ
1Hk4f7c6ZtXiVfnL9VlG/cl+12Wkg 8Oejq8iXsZLyL7Mpibg=
/dsig:SignatureValue
I've been playing with openssl dgst, openssl rsautl and openssl smime
but without success.
I would apperciate it very much if someone could give me some
directions to look.
kind regards,
Ivan
Ing. Ivan Saez Scheihing , Eindhoven University of Technology
Systeemhuis/Bush BG 3.41 tel. 040-2475044
P.O.Box 513, 5600 MB Eindhoven, The Netherlands
E-Mail: [EMAIL PROTECTED]
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]