XML-Signature Syntax and Processing
RFC 3075

Document Type RFC - Proposed Standard (March 2001; No errata)
Obsoleted by RFC 3275
Last updated 2013-03-02
Stream IETF
Formats plain text pdf html
Stream WG state WG Document
Document shepherd No shepherd assigned
IESG IESG state RFC 3075 (Proposed Standard)
Telechat date
Responsible AD (None)
Send notices to (None)
Network Working Group                                        D. Eastlake
Request for Comments: 3075                                      Motorola
Category: Standards Track                                      J. Reagle
                                                                 W3C/MIT
                                                                 D. Solo
                                                               Citigroup
                                                              March 2001

                  XML-Signature Syntax and Processing

Status of this Memo

   This document specifies an Internet standards track protocol for the
   Internet community, and requests discussion and suggestions for
   improvements.  Please refer to the current edition of the "Internet
   Official Protocol Standards" (STD 1) for the standardization state
   and status of this protocol.  Distribution of this memo is unlimited.

Copyright Notice

   Copyright (c) 2001 The Internet Society & W3C (MIT, INRIA, Keio), All
   Rights Reserved.

Abstract

   This document specifies XML (Extensible Markup Language) digital
   signature processing rules and syntax.  XML Signatures provide
   integrity, message authentication, and/or signer authentication
   services for data of any type, whether located within the XML that
   includes the signature or elsewhere.

Table of Contents

   1.  Introduction ................................................  3
         1. Editorial Conventions ..................................  3
         2. Design Philosophy ......................................  4
         3. Versions, Namespaces and Identifiers ...................  4
         4. Acknowledgements .......................................  5
   2.  Signature Overview and Examples .............................  6
         1. Simple Example (Signature, SignedInfo, Methods, and
            References) ............................................  7
              1. More on Reference .................................  9
         2. Extended Example (Object and SignatureProperty) ........ 10
         3. Extended Example (Object and Manifest) ................. 11
   3.  Processing Rules ............................................ 13
         1. Core Generation .... ................................... 13
              1. Reference Generation .............................. 13
              2. Signature Generation .............................. 13

Eastlake, et al.            Standards Track                     [Page 1]
RFC 3075          XML-Signature Syntax and Processing         March 2001

         2. Core Validation ........................................ 13
              1. Reference Validation .............................. 14
              2. Signature Validation .............................. 14
   4.  Core Signature Syntax ....................................... 14
         1. The Signature element .................................. 15
         2. The SignatureValue Element ............................. 16
         3. The SignedInfo Element ................................. 16
              1. The CanonicalizationMethod Element ................ 17
              2. The SignatureMethod Element ....................... 18
              3. The Reference Element ............................. 19
                   1. The URI Attribute ............................ 19
                   2. The Reference Processing Model ............... 21
                   3. Same-Document URI-References ................. 23
                   4. The Transforms Element ....................... 24
                   5. The DigestMethod Element ..................... 25
                   6. The DigestValue Element ...................... 26
         4. The KeyInfo Element .................................... 26
              1. The KeyName Element ............................... 27
              2. The KeyValue Element .............................. 28
              3. The RetrievalMethod Element ....................... 28
              4. The X509Data Element .............................. 29
              5. The PGPData Element ............................... 31
              6. The SPKIData Element .............................. 32
              7. The MgmtData Element .............................. 32
         5. The Object Element ..................................... 33
   5.  Additional Signature Syntax ................................. 34
         1. The Manifest Element ................................... 34
         2. The SignatureProperties Element ........................ 35
         3. Processing Instructions ................................ 36
         4. Comments in dsig Elements .............................. 36
   6.  Algorithms .................................................. 36
Show full document text