COMPGROUPS.NET | Search | Post Question | Groups | Stream | About | Register

Extracting an X509Certificate from XML

  • Follow


I have a SOAP envelope digitally signed and including an X509 
certificate. I'd like to verify the signature using the public key from 
the certificate but cannot work out how to get the public key in my 
KeySelector implementation

Sun's documentation at
http://java.sun.com/developer/technicalArticles/xml/dig_signature_api/
gives examples for when the <X509Data> is inside the <KeyInfo> but not 
for the construction below.

XML is
<soapenv:Envelope ...>
  <soapenv:Header>
   <wsse:Security ...>
    <wsse:BinarySecurityToken
         EncodingType="wsse:Base64Binary"
         Id="X509Token"
         ValueType="wsse:X509v3">
      MIIB9zCCAWCgAwIBAgIERZwdkzANBgkqhkiG9w0BAQUFADBAMQswCQYD
      VQQGEwJVUzEfMB0GA1UEChMWVGVzdCBDZXJ0aWZpY2F0ZXMgSW5jLjEQ
      MA4GA1UEAxMHTXkgTmFtZTAeFw0wNzAxMDMyMTE4MTFaFw0zMTA4MjUy
      ...
    </wsse:BinarySecurityToken>
    <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
      ...
      <ds:KeyInfo>
        <wsse:SecurityTokenReference>
          <wsse:Reference URI="#X509Token"/>
        </wsse:SecurityTokenReference>
      </ds:KeyInfo>
    </ds:Signature>
....

The above XML is loaded into a org.w3c.dom.Document, I can extract the 
BinarySecurityToken into a org.w3c.dom.Node and get at the BASE64 data 
using getTextContent() but I can't work out how to extract a 
java.security.PublicKey from it.

Can anyone offer me a clue?
0
Reply Ian 6/11/2007 4:20:04 PM

comp.lang.java.security 1258 articles. 2 followers.

0 Replies
621 Views

(page loaded in 0.021 seconds)

Similiar Articles:

Extracting an X509Certificate from XML - comp.lang.java.security ...
I have a SOAP envelope digitally signed and including an X509 certificate. I'd like to verify the signature using the public key from the certificat...

Xml signature and pkcs#7 - comp.lang.java.security
X509 Certificates w/ JDK 1.1 - comp.lang.java.security X509 Signature Creation - comp.lang.java.security X509 ... Extracting an X509Certificate from XML - comp.lang.java ...

Encrypt/Decrypt String with RSA and X509Certificate - comp.lang ...
Extracting an X509Certificate from XML - comp.lang.java.security ... Encrypt/Decrypt String with RSA and X509Certificate - comp.lang ... Extracting an X509Certificate from ...

XML Public/Private Keys - comp.lang.java.security
Extracting an X509Certificate from XML - comp.lang.java.security ... Encrypt/Decrypt String with RSA and X509Certificate - comp.lang ... XML Public/Private Keys - comp ...

Sign XML file using pfx file - comp.lang.java.security
Extracting an X509Certificate from XML - comp.lang.java.security ... Sign XML file using pfx file - comp.lang.java.security Sign iSeries Spool File documents created ...

Convert Base64 String to RSA Key - comp.lang.java.programmer ...
Extracting an X509Certificate from XML - comp.lang.java.security ..... into a org.w3c.dom.Node and get at the BASE64 data ... Encrypt/Decrypt String with RSA and ...

Extracting RSA Private Key - comp.lang.java.security
Encrypt/Decrypt String with RSA and X509Certificate - comp.lang ... Extracting RSA Private Key - comp ... Extracting RSA Private Key - comp.lang.java.security XML Public ...

EncryptDecrypt - comp.lang.java.security
Extracting an X509Certificate from XML - comp.lang.java.security ... Extracting RSA Private Key - comp.lang.java.security XML Public/Private Keys - comp.lang.java.security ...

Using Bouncy Castle with PGP files - comp.lang.java.security ...
Extracting an X509Certificate from XML - comp.lang.java.security ... Sign XML file using pfx file - comp.lang.java.security Sign iSeries Spool File documents created ...

RSA sign in java and openssl - comp.lang.java.security
Encrypt/Decrypt String with RSA and X509Certificate - comp ... Sign XML file using pfx file - comp.lang.java.security Extracting RSA Private Key - comp.lang.java.security ...

Extracting an X509Certificate from XML - newsgroups.derkeiler.com ...
I have a SOAP envelope digitally signed and including an X509 certificate. I'd like to verify the signature using the public key from the certificate but cannot work ...

Extracting an X509Certificate from XML - comp.lang.java.security ...
I have a SOAP envelope digitally signed and including an X509 certificate. I'd like to verify the signature using the public key from the certificat...

7/20/2012 2:40:19 PM


Reply:
Privacy Policy | All Times Are GMT(UTC) | powered by