Processing
Reference Validation
- locate object and apply
Transforms
to the specified resource based on each ObjectReference
(s)
in the SignedInfo
element.
- calculate digest over each transformed signed object(s)
- compare value against
DigestValue
in SignedInfo
for each
reference (if any mismatch, validation fails).
Signature Validation
- canonicalize the
SignedInfo
element based on the CanonicalizationMethod
,
if any, in SignedInfo
.
- obtain the validation keying info from
KeyInfo
or externally.
- validate the
SignatureValue
based on the SignatureMethod
in
the SignedInfo