Monday, August 10, 2009

Key retrieval

If the client wants the decryption key from a remote source, XKMS provides a simple method. Using the tag inside the element which is available in the XML signature can be used for this. The following segment assumes that a service exists that can provide information about a given key.
"KeyInfo"
"RetrievalMethod
URI=”http://www.KeyFil.samp/ValidateKey”
Type=”http://www.w3.org/2009/01/xmldsig#X509Certificate”/"
"/KeyInfo"

This search for a key is very simple and does not require the service to enforce the
validity of the key it returns.
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)