Connecting Tech Pros Worldwide Help | Site Map
bytes > topic > .net > answers

Xml digital Signature

Marco Moioli
Guest
  
Posts: n/a
#1: Nov 12 '05


Hi, I've a question about the xml digital signature procedure.

I got a code written in C# that sign and verify an xml document and it works
well, but the question is:

How can I know that the signature come from a certain user?

I know that is possible add the tags:



<KeyInfo>

<X509Data>

<X509IssuerSerial>



<X509IssuerName>CN=TAMURA Kent, OU=TRL, O=IBM,

L=Yamato-shi, ST=Kanagawa, C=JP

</X509IssuerName>



<X509SerialNumber>12345678</X509SerialNumber>



</X509IssuerSerial>

<X509SKI>31d97bd7</X509SKI>

</X509Data>

</KeyInfo

But those tags aren't hashed and I can change the CN= TAMURA Kent with
CN=ROSS Bill and the verify procedure still works.

Is it correct?

How can I do?

Thanks!

Marco Moioli
Closed Thread

« previous question | next question »

Similar .NET Framework bytes

/bytes/development

/bytes/it

/bytes/about

We are a network of experts and professionals in IT and software development that help one another with answers to tough questions and share insights. Get the best answers to your questions from over 226,272 network members.

dev questions:
algorithms | asp | asp.net | c/c++ | coldfusion | c# | flash | html/css | java | javascript |
mobile dev | .net | perl | php | python | ruby | software dev | vb.net | visual basic | xml
it questions:
access | apache | careers | db2 | iis | macosx | mysql | networking | oracle | postgresql | sql server | unix | windows

About Bytes | Copyright 1995-2009 BYTES. All rights Reserved