XML Digital Signatures
XML Digital Signature Support:
- Support for XML Signature
- Creation of XML digital signatures
- Verification of XML digital signatures
- Signing via digital certificate or password
- Multiple transformation options
- Enveloped, enveloping, or detached signatures
- Signing of XML, XML Schema, XBRL, WSDL, and other files
XML Digital Signatures in XMLSpy
As XML security becomes increasingly important, Altova XMLSpy provides easy-to-use functionality for assigning digital XML signatures to XML documents via XML Signature technology.
XML digital signature technology allows you to confirm the authenticity and integrity of XML files, as well as the identity of the signing party. The security XML Signature provides for XML data is important for transmission of files for everyday business transactions as well as XBRL, patent, tax, and other official filing documents that are submitted digitally and will likely require the use of digital signatures in the future.
XMLSpy supports the creation and verification of XML digital signatures. An XML file is signed using either the private key of a digital certificate or a password. The signature can be subsequently verified using either the public key that corresponds to the selected certificate or the password specified during the signing process.
Creating XML Signatures
The Create XML Signature dialog in XMLSpy lets you choose from various options, such as whether authentication shall be provided via digital certificate or password. You may also specify whether to strip non-significant whitespace and optionally select a canonicalization algorithm to apply to prior to performing signature calculations.
Next, you may choose whether to create an enveloped, enveloping, or detached signature. Note: XML Schema and XBRL files can only be signed with detatched signature files; WSDL files support enveloped or detached signatures.
The Append KeyInfo option is used with certificate-based signatures to place the certificate's public key information in the signature. The advantage of including key information is that the certificate itself will not be required for the verification process (since the public-key information is present in the signature).
Verifying XML Signatures
It's just as easy to verify the XML signature on an XML file you've received based on the type of signature it includes (enveloped, enveloping, or detached). XMLSpy will prompt you to select the required certificate and/or password. If the XML file is unchanged since it was signed, the verification is successful.