XML Signature is quite complicated standard. You could not simply
check the signature by calculating the digest of whole XML document.
OpenSSL does not support XML DSig. Probably you want to use some
other library. For example, you can try one I wrote:
http://www.aleksey.com/xmlsec
Aleksey Sanin <[EMAIL PROTECTED]>
http://www.aleksey.com/xmlsec
[EMAIL PROTECTED] wrote:
>Hi,
>
>I have an XML application (works only with MSIE) which signs a html form with the
>users
>private key.. Now I want to verify the signaturevalue on the server (Sun Solaris
>2.8).
>I've succeeded in extracting the public key but I can't find the rigth openssl
>(version 0.9.6c)
>options to check the signaturevalue.
>Probably the format of the signaturevalue is wrong:
>
><dsig:SignatureValue>gQBugbr5aenwu01IvkMBJKsshiwrWUZ/N+gdESuXvWv2b324H7i
>EZ8QOcxAhT78yS6EVtvGTcbUtHuIx99eqG01HRMavyP0P24BqvkK8nqONJY3GO3bDdLjnVxJ
>1Hk4f7c6ZtXiVfnL9VlG/cl+12Wkg 8Oejq8iXsZLyL7Mpibg=
></dsig:SignatureValue>
>
>I've been playing with openssl dgst, openssl rsautl and openssl smime
>but without success.
>I would apperciate it very much if someone could give me some
>directions to look.
>
>kind regards,
>
>Ivan
>
>----
>Ing. Ivan Saez Scheihing , Eindhoven University of Technology
>Systeemhuis/Bush BG 3.41 tel. 040-2475044
>P.O.Box 513, 5600 MB Eindhoven, The Netherlands
>E-Mail: [EMAIL PROTECTED]
>______________________________________________________________________
>OpenSSL Project http://www.openssl.org
>User Support Mailing List [EMAIL PROTECTED]
>Automated List Manager [EMAIL PROTECTED]
>
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
