PEM2XMLDSIG from Tomokazu ISHII on 1999-08-19 (w3c-ietf-xmldsig@w3.org from July to September 1999)

From: Tomokazu ISHII <t-ishii@mken.co.jp>
Date: Thu, 19 Aug 1999 19:27:46 +0900
To: w3c-ietf-xmldsig@w3.org
Message-ID: <B0000077109@dns2.mken.co.jp>
Dear Sirs,
I am Tomokazu ISHII.

I want to write a signature and a certification like PEM
using XML.

Althouh I tried to write it reffering to
`draft-ietf-xmldsig-signature-00.txt,'
I had some questions as following.

Is there anybody to answer me?

(1) How to calculate the message digest.
    - Is the object of signature a file?
    - Do I have to convert <LF> to <CR><LF>?

(2) Is this algorithm right?
           <dsig:Algorithm type='urn:rsa-encryption'>
             <dsig:Parameter type='digest-algorithm'>
               <dsig:Algorithm type='urn:rsasdi-com:MD5'/>
    PEM(rfc2313):
      1) message digesting (MD5)
      2) RSA encryption
      3) binary to character conversion

(3) Can I put the result of (2)
    into <dsig:Value> in <dsig:Signature>?

(4) Can I put PEM Orginator-Certificate or Issuer-Certificate
    into <dsig:Value> in <dsig:Certificate>?

The following file is my trial.
If you find mistakes, please let me know them.

#================================
<?XML version="1.0"?>

<dsig:Document>

  <dsig:Signatures>
    <dsig:Signature>

      <dsig:Manifest>
        <dsig:SignatureAlgorithm>
          <dsig:Algorithm type='urn:rsa-encryption'>
            <dsig:Parameter type='digest-algorithm'>
              <dsig:Algorithm type='urn:rsasdi-com:MD5'/>
            </dsig:Parameter>
          </dsig:Algorithm>
        </dsig:SignatureAlgorithm>
      </dsig:Manifest>

      <dsig:Value>
CpaUUXK7Q5r9SKO5x/9ddZtryXdC00yc9g6PABpO7IH8rAqAJ8pk6xqmmg1Kv3zL
P+ulPu8CdVcYmsjNqPMmzg==
      </dsig:Value>

    </dsig:Signature>
  </dsig:Signatures>

  <dsig:Certificates>
    <dsig:Certificate type='urn:X500:X509v3'>
      <dsig:Value>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      </dsig:Value>
    </dsig:Certificate>

    <dsig:Certificate type='urn:X500:X509v3'>
      <dsig:Value>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      </dsig:Value>
    </dsig:Certificate>
  </dsig:Certificates>

</dsig:Document>
#================================

Best regards,

----
Tomokazu ISHII  M.Ken Co.,Ltd.
Nichiwa Bldg., 31-1, Motoyoyogi-cho
Shibuya-ku, Tokyo 151-0062, Japan.
E-Mail t-ishii@mken.co.jp
Received on Thursday, 19 August 1999 06:26:47 UTC