Signing information configuration settings
Use this page to configure new signing parameters.
The specifications listed on this page for the signature method, digest
method, and canonicalization method are located in the W3C document entitled,
"XMLSignature Syntax and Specification: W3C Recommendation 12 Feb 2002".
To view this administrative console page:
- Click Enterprise Applications > application_name.
- Under Related Items, click Web Modules > URI_file_name >
Web Services: Server Security Bindings.
- In the Request Receiver Binding column, click Edit > Signing Information.
- Click New to create a signing parameter or click Delete to
delete a signing parameter.
- Signature Method
- Specifies the algorithm Uniform Resource Identifiers (URI) of the
signature method. This method contains the actual value of the digital signature
encoded using base64.
The following algorithms are supported:
- http://www.w3.org/2000/09/xmldsig#rsa-sha1
- http://www.w3.org/2000/09/xmldsig#dsa-sha1
- Digest Method
- Specifies the algorithm URI of the digest method.
The http://www.w3.org/2000/09/xmldsig#sha1 algorithm is supported.
- Canonicalization Method
- Specifies the algorithm URI of the canonicalization method.
The following algorithms are supported:
- http://www.w3.org/2001/10/xml-exc-c14n#
- http://www.w3.org/2001/10/xml-exc-c14n#WithComments
- http://www.w3.org/TR/2001/REC-xml-c14n-20010315
- http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments
- Signing Key
- Specifies the key information that is used for signing. These fields
are ignored in receiver-side configuration.
If you specify a Key Name and a Key Locator Reference, select None for
the Certificate Path.
- Certificate Path
- Specifies the settings for the certificate path validation. When
you select Trust Any, this validation is skipped and all the incoming
certificates are trusted. These fields are ignored in sender-side configuration.
If you click Trust Any or select a Trust Anchor and a Certificate
Store, select None for the Signing Key in the previous field.
Trust Anchor
The selections available for Trust Anchor are specified by clicking Servers
> Application Servers > server_name. Under Additional Properties,
click Web Services: Default bindings for Web Services Security > Trust
Anchors.
Certificate Store
The selections available for the Collection Store are specified by clicking Servers
> Application Servers > server_name. Under Related Items, click Web
Services: Default bindings for Web Services Security > Collection Certificate
Store.

XML digital signature

Signing information collection
Searchable topic ID:
uwbs_signinfon
Last updated: Jun 21, 2007 9:56:50 PM CDT
WebSphere Application Server for z/OS, Version 5.0.2
http://publib.boulder.ibm.com/infocenter/wasinfo/index.jsp?topic=/com.ibm.websphere.zseries.doc/info/zseries/ae/uwbs_signinfon.html