This is the full background of my problem.
I´m working with a client who connects to a secure webservice.
I´m using VS 2003 .Net. with WSE 2.0 sp3 and the .Net 1.1 framework
I got no access to the webservice code but i got a manual from the
webservice owner on how to connect.
The manual expects me to have some knowledge in WS-Security,
WS-SecureConversation and WS-Trust.
The problem is I dont really understand the explanation in this manual.
I was totally new to Webservices and certificates when i started this
project so im in the process of learning.
The Webservice uses a Challenge/Response method to login.
The challenge is a random number sent to me in a RSTR in a <wst:challenge>
element.
(This is where i got stuck)
Now i need to sign this challenge and send back a RSTR to the webservice
with the signature located in a <wst:binaryexchangeelement.
The valuetype of the signature is pkcs7 and it shall be base64 encoded.
I got a SmartCard witch contains my personal Id(certificate(s))
(im using smarttrust as a signing client) wich i shall use to sign this
challenge the webservice owner sent me this one.
And i got an example of an client ouputtrace example from the manual wich
looks like this (without header and such, just the important part.)
<wst:SignChallengeResponse>
<wst:Challenge>
0CIVnrRepvNSvlkgUgrF8BWBXFk4Icjoob1HPtnoEj4=
</wst:Challenge>
</wst:SignChallengeResponse>
<wst:BinaryExchange ValueType="http://host.com/signedChallenge/pkcs7"
EncodingType="xs:base64Binary">MIIFlAYJKoZIhvcNAQc CoIIFhTCCBYECAQExCzAJBgUrDgMCGgUAMDsGCSqGSIb3DQEHA aAuBCwwQ0lWbnJSZXB2TlN2bGtnVWdyRjhCV0JYRms0SWNqb29 iMUhQdG5vRWo0PaCCA9AwggPMMIICtKADAgECAgMDUtYwDQYJK oZIhvcNAQEFBQAwUDELMAkGA1UEBhMCU0UxGjAYBgNVBAoUEVB vc3RlbiBTdmVyaWdlIEFCMSUwIwYDVQQDFBxQb3N0ZW4gU3Zlc mlnZSBBQiBUZXN0IENBIHYxMB4XDTAzMDUyMDIzNTk1OVoXDTA 1MDUxOTIzNTk1OVowXjELMAkGA1UEBhMCU0UxFjAUBgNVBAMUD cVrZSBMYWdlcmdyZW4xEjAQBgNVBAQTCUxhZ2VyZ3JlbjEMMAo GA1UEKhQDxWtlMRUwEwYDVQQFEwwxOTM0MDQyMTY5NTgwgZ8wD QYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAJ2SGwFHlBhuTi595ec iFeQTDEOAO1JuuEy2AAmPvcJ1ld6m5xik91FlwyFWwYOnD3372 QmOj5G2NqoX+T9+7bslfxY6iImGVxbTRoIxp27iM7FL5bsq4RQ 1D1T7tI+OGKc+mjzxa/UwCwJFrU/QrbViUAJlHwsGrj0BZYXuJaXtAgMBAAGjggEjMIIBHzAJBgNVH RMEAjAAMBEGA1UdDgQKBAhKSiReXOvfzjAXBgNVHSAEEDAOMAw GCiqFcCYBAQIDAQMwHwYGKoVwIgIBBBUTEzYwMzIyMTM0NTQwM DIzMjA2MzcwEwYDVR0jBAwwCoAIUzF0ZXN0WDEwDgYDVR0PAQH/BAQDAgWgMIGfBgNVHR8EgZcwgZQwgZGggY6ggYuGgYhsZGFwOi 8vZHMua2F0YWxvZy5wb3N0ZW4uc2U6MzkwL2NuPVBvc3RlbiUy MFN2ZXJpZ2UlMjBBQiUyMFRlc3QlMjBDQSUyMHYxLG89UG9zdG VuJTIwU3ZlcmlnZSUyMEFCLGM9c2U/Y2VydGlmaWNhdGVSZXZvY2F0aW9uTGlzdDtiaW5hcnk/MA0GCSqGSIb3DQEBBQUAA4IBAQCgN/3xXZknyY1Apg+akISurPKWuqtKuYtG+TjRqZf/GEEwJwl9FtTst3xZzY03a+t147rh4Hy87yDk0Nj9fu5gmP3f8J T0JiBAvsFLuMn5h+bov1/LpygM8ObMvCTKNhI9TULUrfvcsHlPT7blt1k7CJ19mN0GT2Fbp FeGjHn2hojd0waE7tUMZfAMXw32kpIll76tgQrLCM2F6fHTFFz ULO9GqI2/mMQbbKPXLLonQMw9POHP4wP/dk/me4lKYPxGx2eja2GTMQFyvZjiV5E3Tms9N2PsYjGlmq95ukur3 shmmmFaEOIgT+/SF8MbWc5jhdkrwbgVSOjwrvu3klDCMYIBXDCCAVgCAQEwVzBQM QswCQYDVQQGEwJTRTEaMBgGA1UEChQRUG9zdGVuIFN2ZXJpZ2U gQUIxJTAjBgNVBAMUHFBvc3RlbiBTdmVyaWdlIEFCIFRlc3QgQ 0EgdjECAwNS1jAJBgUrDgMCGgUAoF0wGAYJKoZIhvcNAQkDMQs GCSqGSIb3DQEHATAcBgkqhkiG9w0BCQUxDxcNMDQwOTI5MTYwO DIxWjAjBgkqhkiG9w0BCQQxFgQUKCccjt1oP6vl6ae5w7gNcBG 3fRswDQYJKoZIhvcNAQEBBQAEgYAKBOii8dikhT/cjc+XMpRRweTioYO+yEljPz0N9n6ZQqNR/3bOX7RQvWio6xtWkIre0U6SO6w2RUhQ4Xj9QPC7XUMU8n+yuF1 zOIP9YyH/M4F3TzijXM3iBVwv/aeqDrIy7pI1Y3do8x0qsR7RfkPITb14qgIScHcfBKDDoO29+Q= =</wst:BinaryExchange>
I have found 0 examples of anything similar so i ask you and hope you could
give me some directions in how to generate this signature?
Regards Joel.