I have CMS(PKCS#7 based) signature as input and I want to create equivalent xmldsig out of it. I can extract X509 certificate out of CMS message, but I don't see the way how to extract signature hash (to reuse in xmldsig field). Is there way to extract signature hash out of CMS message?
transform CMS (PKCS#7 based) signature into value suitable for xmldsig <ds:SignatureValue> field
361 Views Asked by bigral At
1
There are 1 best solutions below
Related Questions in X509CERTIFICATE
- openssl: try to load local ca store
- Upload device's x509 certificate to Azure Iothub
- Which certificate to use with Aspose for digital signatures
- implementing EST server (RFC7030). does github.com/globalsign/est support both client and server properly?
- In PHP openssl, how to get public certificate PEM for website?
- Can't drive any matched public keys in "mbedtls_ecdh_context" from certificate and private key file using mbedtls
- How do I get the 'pub' info from an EC certificate in Java?
- Clarification on the Location where CRL URL should be Obtained in CRL Validation of X509 Certificates
- Calling controller results in http 404 error: unable to verify the first certificate
- Dockerfile ARG names can not be blank
- How to ask for PIN/Password of Certificate from windows cert store (usb smart card) - C# NET8
- CADES-T signature Java8
- How to use X509Certificate in bun
- How to add digital signature to emails using python script
- What are the consequences of an expired digital signature of a C# assembly?
Related Questions in SIGNATURE
- Signature mismatch. Authorization signature or client credential is wrong with Android
- Thunderbird: Get Subject dynamically in HTML Signature
- I need Visual Code Studio to Auto Suggest parameter details for my functions, Where and how I do that?
- What causes this type mismatch when applying a functor?
- What is the right way to put type declarations in OCaml signatures
- Golang's RSA signature doesn't match Java's
- XADES-A implementation in Java with manually entered signature value
- How do I integrate Docusign into React app
- How to append unique php variable to upload of signature
- ECDSA Public Keys can be tampered with?
- Signature calculation to access Amazon Bedock
- AWS Coudflare signed URLs alternative
- how to save the signature in amazon s3 bucket in filament php
- Understand expired glibc signature key
- PDFBox Java - Create a PAdES Signature with external Presigned Hash
Related Questions in SIGNING
- Windows Driver signing: Do I need EV or simple certification
- How can I sign aab with certificate file
- XML sing URI Reference only alphanumeric
- iOS PDFKit Cryptograhpic Signature
- Validating a webhook signature AND using the body in NextJS
- Error in publishing maui ios app because Code signing must be enabled to create an Xcode archive
- how can i change (sign out) my github account
- BouncyCastle Error "Unable to cast object of type 'Org.BouncyCastle.Asn1.DerSequence' to type 'Org.BouncyCastle.Asn1.DerOctetString'
- The "SignName" property of class PdfPKCS7 always return null in Itext 5.5.13.2 using the C#
- How to get the B-LTA in Itext 5.5.13.2 using the C#
- Unable to install App on real device or distribute it ad hoc, normal on Simulator
- opening docusign envelope for signature is showing custom fields
- Intermitent "The signature key was not found" error
- public key signing - why this is not advisable
- import com.firebase.ui.auth.AuthUI not working
Related Questions in PKCS#7
- RemoveCertificate in System.Security.Cryptography.Pkcs.SignedCms - is real (NetFramwork 4.7)?
- Compute sign using secure token hit Unknown error -1073741275 using sha256 algo
- Why are there no extensions in the CertificateExtensions property of CertificateRequest?
- PartialChain error in X509Chain when building certificate chain?
- Including other certificates when signing using SignedCms and CmsSigner on .NET C#
- Meaning of algorithm properties in a certificate
- Decryption error while Decrypt the symmetric key
- How can i get public key in DER format from base64 encoded public key?
- Failed to create SecKey using SecKeyCreateWithData using swift
- Automate parsing yubikey pin in pkcs11
- What is the safest way to recognize if a file is application/pkcs7-mime or analogous in Angular?
- OpenSSL.crypto.Error when trying to load certificate from Azure Key Vault
- convert pkcs1 signature to pkcs7 signature using nodejs
- In which version of openssl is the pkcs8 v2 option introduced?
- How to check pkcs format of a private key using golang code?
Related Questions in XML-DSIG
- XADES-A implementation in Java with manually entered signature value
- Signing is not valid using RobRichards\XMLSecLibs
- Quarkus - No DEBUG logs appear from Java XML Digital Signature API
- Signing XML (XML-DSig) using HSM and PKCS11 token in .Net Core 7.0
- XML Signature remote
- What is getting signed in XML Signature (XMLDsig)?
- XML Digital Signature and Canonicalization
- XML envelopped signature with Inclusivenamespace
- Error while signing a specific XML tag in java
- How to generate a "Partial Xml Signature" (ie the content of the SignedInfo tag)?
- Append XML with XAdES-T Timestamp Response (TSR)
- How to use Xpath Transform
- C#- How to sign certificate XML document without URI attribute on <Reference> tag?
- Calculating SignatureValue from SignedInfo using RSACryptoServiceProvider
- What does Soap UI uses from soap envelope to create XMLDsig signature?
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular # Hahtags
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
You can't convert a CMS SignedData to an XmlDSig SignedXml, they aren't signing the same thing.
CMS SignedData signs either the raw data (when no signed attributes are present) or the signed attributes (which, when present must contain the correct hash of the raw data as an attribute).
XmlDSig SignedXml uses a signature over the canonicalized SignedInfo element. The SignedInfo element contains the hash (digest) of the original data as part of its payload.
If you have the private key and understand that you need to resign after building the SignedInfo value manually, then we do get to the last part of your question:
I'm not sure what "signature hash" means. If you mean "the hash of the original data", then in SignedCms that'd be something like
Perhaps with fewer calls to Linq extension methods and/or more assertions on correctness once the correct OID is found.