forked from openkylin/xmlsec1
249 lines
7.3 KiB
Plaintext
249 lines
7.3 KiB
Plaintext
Sample XML Signatures Produced Using the Phaos XML Toolkit
|
|
|
|
November 26, 2002
|
|
|
|
|
|
Contents of phaos-xmldsig-three
|
|
===============================
|
|
|
|
signature-rsa-enveloped.xml
|
|
---------------------------
|
|
Contains an RSA enveloped signature.
|
|
|
|
|
|
signature-rsa-enveloping.xml
|
|
----------------------------
|
|
Contains an RSA enveloping signature.
|
|
|
|
|
|
signature-rsa-detached.xml
|
|
--------------------------
|
|
Contains an RSA detached signature.
|
|
|
|
|
|
signature-dsa-enveloped.xml
|
|
---------------------------
|
|
Contains a DSA enveloped signature.
|
|
|
|
|
|
signature-dsa-enveloping.xml
|
|
----------------------------
|
|
Contains a DSA enveloping signature.
|
|
|
|
|
|
signature-dsa-detached.xml
|
|
--------------------------
|
|
Contains a DSA detached signature.
|
|
|
|
|
|
signature-hmac-md5-c14n-enveloping.xml
|
|
--------------------------------------
|
|
Contains an enveloping MD5 HMAC signature and uses XML Canonicalization
|
|
as the canonicalization method. The HMAC secret is the ASCII encoding of
|
|
the word "test".
|
|
|
|
|
|
signature-hmac-sha1-exclusive-c14n-enveloped.xml
|
|
------------------------------------------------
|
|
Contains an enveloped SHA-1 HMAC signature and uses the Exclusive XML
|
|
Canonicalization canonicalization method. The HMAC secret is the ASCII
|
|
encoding of the word "test".
|
|
|
|
|
|
signature-hmac-sha1-exclusive-c14n-comments-detached.xml
|
|
--------------------------------------------------------
|
|
Contains a detached SHA-1 HMAC signature and uses the Exclusive XML
|
|
Canonicalization With Comments canonicalization method. The HMAC secret
|
|
is the ASCII encoding of the word "test".
|
|
|
|
|
|
signature-hmac-sha1-40-c14n-comments-detached.xml
|
|
-------------------------------------------------
|
|
Contains a detached 40-byte SHA-1 HMAC signature and uses the XML
|
|
Canonicalization With Comments canonicalization method. The HMAC secret is
|
|
the ASCII encoding of the word "test".
|
|
|
|
|
|
signature-hmac-sha1-40-exclusive-c14n-comments-detached.xml
|
|
-----------------------------------------------------------
|
|
Contains a detached 40 byte SHA-1 HMAC signature and uses the Exclusive
|
|
XML Canonicalization With Comments canonicalization method. The HMAC secret
|
|
is the ASCII encoding of the word "test".
|
|
|
|
|
|
signature-dsa-detached-manifest.xml
|
|
-----------------------------------
|
|
Contains a detached DSA signature with a manifest.
|
|
|
|
|
|
signature-rsa-detached-manifest.xml
|
|
----------------------------------
|
|
Contains a detached RSA signature with a manifest.
|
|
|
|
|
|
signature-rsa-detached-b64-transform.xml
|
|
----------------------------------------
|
|
Contains a detached RSA signature with a Base64 decode transform.
|
|
|
|
|
|
signature-rsa-detached-xpath-transform.xml
|
|
------------------------------------------
|
|
Contains a detached RSA signature with an XPath transform.
|
|
|
|
|
|
signature-rsa-xpath-transform-enveloped.xml
|
|
------------------------------------------
|
|
Contains an RSA signature with an XPath transform that produces the
|
|
same result as the enveloped signature algorithm.
|
|
|
|
|
|
signature-rsa-detached-xslt-transform.xml
|
|
------------------------------------------
|
|
Contains a detached RSA signature with an XSLT transformation.
|
|
|
|
|
|
signature-rsa-detached-x509-data.xml
|
|
------------------------------------
|
|
Contains a detached RSA signature with several X509Data subelements.
|
|
|
|
|
|
signature-rsa-detached-x509-data-subject-name.xml
|
|
------------------------------------
|
|
Contains a detached RSA signature with an X509SubjectName that
|
|
references the subject name of the certificate stored in
|
|
certs/rsa-client-cert.der.
|
|
|
|
|
|
signature-rsa-detached-x509-data-issuer-serial.xml
|
|
------------------------------------
|
|
Contains a detached RSA signature with an X509IssuerSerial that
|
|
references the issuer and serial number of the certificate stored in
|
|
certs/rsa-client-cert.der.
|
|
|
|
|
|
signature-rsa-detached-x509-data-ski.xml
|
|
------------------------------------
|
|
Contains a detached RSA signature with an X509SKI that
|
|
references the Subject Key Identifier of the certificate stored in
|
|
certs/rsa-client-cert.der.
|
|
|
|
|
|
signature-rsa-detached-x509-data-client-cert.xml
|
|
------------------------------------
|
|
Contains a detached RSA signature with an X509Certificate that
|
|
represents the certificate stored in certs/rsa-client-cert.der.
|
|
|
|
|
|
signature-rsa-detached-x509-data-cert-chain.xml
|
|
------------------------------------
|
|
Contains a detached RSA signature with two X509Certificate
|
|
elements that represent the certificates stored in
|
|
certs/rsa-client-cert.der and certs/rsa-ca-cert.der.
|
|
|
|
|
|
signature-rsa-detached-xslt-transform-retrieval-method.xml
|
|
------------------------------------
|
|
Contains a detached RSA signature with an XSLT transform and a KeyInfo
|
|
element that refers to an external X.509 certificate. The certificate
|
|
is located in certs/rsa-client-cert.der.
|
|
|
|
|
|
signature-big.xml
|
|
-----------------
|
|
Contains a larger detached RSA signature that contains a manifest and many
|
|
references that test various transformation algorithms, URI reference syntax
|
|
formats, etc. The KeyInfo contains a KeyName whose value is the subject
|
|
name of the certificate stored in certs/rsa-client-cert.der.
|
|
|
|
|
|
signature-rsa-detached-xslt-transform-bad-retrieval-method.xml
|
|
---------------------------------------------------------------
|
|
Contains a detached RSA signature with an XSLT transform and a KeyInfo
|
|
element that refers to an INCORRECT external X.509 certificate. (The correct
|
|
X.509 certificate is located in certs/rsa-client-cert.der.) Verification
|
|
should FAIL.
|
|
|
|
|
|
signature-rsa-enveloped-bad-digest-val.xml
|
|
------------------------------------------
|
|
Contains an enveloped RSA signature that contains a reference with an INCORRECT
|
|
digest value. Verification should FAIL.
|
|
|
|
|
|
signature-rsa-enveloped-bad-sig.xml
|
|
-----------------------------------
|
|
Contains an enveloped RSA signature that contains a reference that was added
|
|
after the signature value was computed. Verification should FAIL.
|
|
|
|
|
|
document.xml
|
|
------------
|
|
An XML document that is referenced by some of the signature examples.
|
|
|
|
|
|
document-stylesheet.xml
|
|
-----------------------
|
|
The same as document.xml with the addition of an xsl-stylesheet processing
|
|
instruction.
|
|
|
|
|
|
document.xsl
|
|
------------
|
|
An XSL stylesheet referenced by several of the signature examples and
|
|
document-stylesheet.xml.
|
|
|
|
|
|
document.b64
|
|
------------
|
|
A Base64 encoded XML document.
|
|
|
|
|
|
README.txt
|
|
----------
|
|
This file.
|
|
|
|
|
|
|
|
Contents of phaos-xmldsig-three/certs
|
|
=====================================
|
|
|
|
rsa-cert.der
|
|
------------
|
|
An RSA end entity certificate issued by the CA certificate contained in
|
|
rsa-ca-cert.der.
|
|
|
|
enc-rsa-key.der
|
|
---------------
|
|
The RSA private key that matches rsa-cert.der, password-encrypted using
|
|
the PKCS#8 format. The password is "test".
|
|
|
|
dsa-cert.der
|
|
------------
|
|
An DSA end entity certificate issued by the CA certificate contained in
|
|
dsa-ca-cert.der.
|
|
|
|
enc-dsa-key.der
|
|
---------------
|
|
The DSA private key that matches dsa-cert.der, password-encrypted using
|
|
the PKCS#8 format. The password is "test".
|
|
|
|
rsa-ca-cert.der
|
|
---------------
|
|
An RSA self-signed CA certificate.
|
|
|
|
dsa-ca-cert.der
|
|
---------------
|
|
A DSA self-signed CA certificate.
|
|
|
|
crl.der
|
|
-------
|
|
A sample CRL that revokes rsa-cert.der.
|
|
|
|
|
|
|
|
Joe Morgan
|
|
Software Engineer
|
|
Phaos Technology
|
|
jmorgan@phaos.com
|
|
http://www.phaos.com/
|