1 / 6

XML DIGITAL SIGNATURE

XML DIGITAL SIGNATURE. ASIM REHMAN YURI ALEGRIA. Introduction. What is a digital signature Digital signature provides a mechanism for assuring integrity of data, the authentication of its signer, and the nonrepudiation of the entire signature What is XML

kamin
Download Presentation

XML DIGITAL SIGNATURE

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. XML DIGITAL SIGNATURE ASIM REHMAN YURI ALEGRIA

  2. Introduction • What is a digital signature • Digital signature provides a mechanism for assuring integrity of data, the authentication of its signer, and the nonrepudiation of the entire signature • What is XML • XML is a markup language that defines syntax and rules for using tags to structure information • Why XML digital signatures • The format used by older security technologies to implement security requirements is inappropriate for most XML Security applications • XML languages are semantically rich and structured data, text-based, and Web-ready nature • XML is being adopted widely for a growing variety of applications and types of content

  3. Characteristics • Joint effort between the World Wide Web Consortium (W3C) and Internet Engineering Task Force (IETF) • Can sign only specific portions of the XML tree rather than the complete document • Can sign more than one type of resource • Character-encoded data (HTML) • Binary-encoded data (a JPG) • XML-encoded data • Specific section of an XML file

  4. Types of Signatures • Enveloping Signature Signed contents are placed within a signature itself. Signature wraps the item that is being signed • Enveloped Signature Signature is embedded within the XML content that was signed • Detached Signature Signature is stored separately from the signed content. Reference element in signature points to the location of the data

  5. Structure of a Signature • <check> • <PersonName>Jim Morrison</PersonName> • <date>2004-11-01T00:00:00</date> • <Signature xmlns=http://www.w3.org/2000/09/xmldsig#> • <SignedInfo> • <CanonicalizationMethod • Algorithm=“http://www.w3.org/TR/2001/REC-xml-c14n-20010315”/> • <SignatureMethod • Algorithm=“http://www.w3.org/TR/2000/09/xmldsig#rsa-sha1”/> • <Reference URI=“ ”> • <Transforms> • <Transform • Algorithm=“http://www.w3.org/2000/09/xmldsig#enveloped-signature”/> • </Transforms> • <DigestMethod Algorithm=“http://www.w3.org/2000/09/xmldisg#sha1”/> • <DigestValue>eUPar59M28X1c1DNORnhmW0Z2Y=</DigestValue> • </Reference> • </SignedInfo> • <SignatureValue>epyuHLJmyscoVMg2pZZAtZJbBHsZFUCwE4Udv+u3T • thj6fJGH4wpw/danhTLj7fqOghdk3jfplbxsewHSVfjpeytvnd=</SignatureValue> • </Signature> • </check>

More Related