- From: Christian Geuer-Pollmann <geuer-pollmann@nue.et-inf.uni-siegen.de>
- Date: Fri, 17 May 2002 07:42:40 +0200
- To: John Messing <jmessing@law-on-line.com>
- cc: Roman Huditsch <roman.huditsch@hico.com>, w3c-ietf-xmldsig@w3.org
Yes, of course. Sorry, I didn't include a full example. It's a a complete
XML Signature:
<Signature xmlns="&ds;">
<SignedInfo>
<CanonicalizationMethod ... />
<SignatureMethod ..../>
<Reference URI="1.gif" >
<DigestMethod ... />
<DigestValue ... />
</Reference>
</SignedInfo>
<SignatureValue ... />
...
</Signature>
--On Donnerstag, 16. Mai 2002 21:09 -0700 John Messing
<jmessing@law-on-line.com> wrote:
> Wouldn't you need to include the message digest of the file in the signed
> data as well and then sign the reference and the message digest as signed
> info?
>> I would say yes. Signing a GIF or something similar is
>>
>> <Reference URI="1.gif" (or URI="protocol://host/1.gif">
Received on Friday, 17 May 2002 01:37:48 UTC