dss - sample protocol exchange 3
This request/response pair illustrates the production of an enveloping XML signature over XML data.
Request
<?xml version="1.0" encoding="utf-8"?>
<dss:SignRequest Profile="urn:oasis:names:tc:dss:1.0:profile:dss_interop"
RequestID="I9e54e5e59e9724683b2379f846ec0f98"
xmlns:dss="urn:oasis:names:tc:dss:1.0:core:schema">
<dss:OptionalInputs>
<dss:SignatureType>urn:ietf:rfc:3275</dss:SignatureType>
<dss:EnvelopingSignature WhichDocument="I32e9cb94a1be1511c3fe71da153bf865"
ObjId="Ic7c1de789c8ba5312e07496f3a6d3228"/>
</dss:OptionalInputs>
<dss:InputDocuments>
<dss:Document ID="I32e9cb94a1be1511c3fe71da153bf865"
RefType="http://www.w3.org/2000/09/xmldsig#Object"
RefURI="Ic7c1de789c8ba5312e07496f3a6d3228">
<dss:XMLData>
<ex:Example xmlns:ex="urn:markupsecurity:dss:interop:example">
<ex:Message>
Hello World!
</ex:Message>
</ex:Example>
</dss:XMLData>
</dss:Document>
</dss:InputDocuments>
</dss:SignRequest>
Response
<?xml version="1.0" encoding="utf-8"?>
<dss:SignResponse RequestID="I9e54e5e59e9724683b2379f846ec0f98"
Profile="urn:oasis:names:tc:dss:1.0:profile:dss_interop"
xmlns:dss="urn:oasis:names:tc:dss:1.0:core:schema">
<dss:Result>
<dss:ResultMajor>
urn:oasis:names:tc:dss:1.0:resultmajor:Success
</dss:ResultMajor>
</dss:Result>
<dss:SignatureObject>
<ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:SignedInfo>
<ds:CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
<ds:SignatureMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<ds:Reference URI="#Ic7c1de789c8ba5312e07496f3a6d3228"
Type="http://www.w3.org/2000/09/xmldsig#Object">
<ds:Transforms>
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</ds:Transforms>
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<ds:DigestValue>CspBZRlFJRv6v7CBt4c3SfauodM=</ds:DigestValue>
</ds:Reference>
</ds:SignedInfo>
<ds:SignatureValue>
RkgnnzUa/FxAvXEf0jZED5DKboBPi3hS7XI7XWz1NpJE13tlnqc+thLahBSzy7lroo+b
yAJ98nbi9wG0WH0sjSdH+o9gfHnx38OPt9Rk/qkqsXxaitct2uEZCOsa3NG7ywYPj3/q
XqGuWJuPu0SrWxvVJicaoTzOGrLV9S0xgHo=
</ds:SignatureValue>
<ds:KeyInfo>
<ds:X509Data>
<ds:X509Certificate>
MIIERDCCAyygAwIBAgIBATANBgkqhkiG9w0BAQUFADCB3jELMAkGA1UEBhMCQ0gxDjAM
BgNVBAgTBUJlcm5lMQ4wDAYDVQQHEwVCZXJuZTEfMB0GA1UEChMWVW5pdmVyc2FsIFBv
c3RhbCBVbmlvbjEaMBgGA1UEChMRRm9yIFRlc3QgVXNlIE9ubHkxHTAbBgNVBAsTFEVs
ZWN0cm9uaWMgUG9zdCBNYXJrMTMwMQYDVQQDEypVbml2ZXJzYWwgUG9zdGFsIFVuaW9u
IFBpbG90IEVQTSBBdXRob3JpdHkxHjAcBgkqhkiG9w0BCQEWD0NBQWRtaW5AdXB1Lmlu
dDAeFw0wNTAxMjUxOTU3MTFaFw0xMDAxMjQxOTU3MTFaMIHeMQswCQYDVQQGEwJDSDEO
MAwGA1UECBMFQmVybmUxDjAMBgNVBAcTBUJlcm5lMR8wHQYDVQQKExZVbml2ZXJzYWwg
UG9zdGFsIFVuaW9uMRowGAYDVQQKExFGb3IgVGVzdCBVc2UgT25seTEdMBsGA1UECxMU
RWxlY3Ryb25pYyBQb3N0IE1hcmsxMzAxBgNVBAMTKlVuaXZlcnNhbCBQb3N0YWwgVW5p
b24gUGlsb3QgRVBNIFNpZ25hdHVyZTEeMBwGCSqGSIb3DQEJARYPQ0FBZG1pbkB1cHUu
aW50MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCt76rxkdwCDldyW0xpWgVEhmJP
fxmovAWOhkZmiaTaRU2j83gOhVlhqL4/CIfuVMy2CNx3CNN5XomVknvt1/VyB4p9qpfU
DQ9b3IRZk8gTSbMe+41sRnggqHadIizMkRN1p/VA8MWsJu8dPlBhCE0DsBaF3zptV2GI
y3saM7cPPwIDAQABo4GOMIGLMAwGA1UdEwQFMAMCAQAwHQYDVR0OBBYEFHTznwFYH6CS
8xuZZlvo+6p3eWWaMB8GA1UdIwQYMBaAFO0VydJTZFy9p5n9OT6icSir2KhQMC4GA1Ud
HwQnMCUwI6AhoB+GHWh0dHA6Ly9jYTEudXB1LmludC9tYXN0ZXIuY3JsMAsGA1UdDwQE
AwIHgDANBgkqhkiG9w0BAQUFAAOCAQEAMp2qzlZOxIU1LKV8mKb0pjVgfVbSLFmCgPJP
xRnZciLY+P5sMhpdAkGQdhm67dvwBNPisz3XlnC7U/JH6mFeXDhat9mMg5LO+9KlsKqZ
WmT9riMvCGKJeibMSyzM1sgwv3ib5/kSswDDMcEaOW5QjoytluZWt7cR4ice7aow1EF5
XdEqNYkTErFM6rhfqO1lwg5V3Oc8SrqwnznUaXhjjTTHnsiWGtP0ip++UwKH0T0NE3CY
HIkakGtgPd5q6LsIp4so3+cMpQGWKngf+/Dj2vag24QG7ohcXYM2y7hGhdbY34m5QzlJ
Qr0r2H9MUsg3cne6Z+X4hcmhG67sIX1yxA==
</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
<ds:Object Id="Ic7c1de789c8ba5312e07496f3a6d3228">
<ex:Example xmlns:ex="urn:markupsecurity:dss:interop:example">
<ex:Message>
Hello World!
</ex:Message>
</ex:Example>
</ds:Object>
</ds:Signature>
</dss:SignatureObject>
</dss:SignResponse>