Signing information configuration settings: WAS v5.1

Signing information configuration settings

To configure new signing parameters.
The specifications listed on this page for the signature method, digest method, and canonicalization method are located in the W3C document entitled, "XMLSignature Syntax and Specification: W3C Recommendation 12 Feb 2002".
To view this administrative console page...

Click Enterprise Applications > appname.
Under Related Items, click Web Modules > URI_file_name > Web Services: Server Security Bindings.
In the Request Receiver Binding column, click Edit > Signing Information.
Click New to create a signing parameter or click Delete to delete a signing parameter.

Signature Method Specifies the algorithm Uniform Resource Identifiers (URI) of the signature method. This method contains the actual value of the digital signature encoded using base64.
The following algorithms are supported...

http://www.w3.org/2000/09/xmldsig#rsa-sha1
http://www.w3.org/2000/09/xmldsig#dsa-sha1

Digest Method Specifies the algorithm URI of the digest method.
The http://www.w3.org/2000/09/xmldsig#sha1 algorithm is supported.

Canonicalization Method Specifies the algorithm URI of the canonicalization method.
The following algorithms are supported...

http://www.w3.org/2001/10/xml-exc-c14n#
http://www.w3.org/2001/10/xml-exc-c14n#WithComments
http://www.w3.org/TR/2001/REC-xml-c14n-20010315
http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments

Signing Key Specifies the key information that is used for signing. These fields are ignored in receiver-side configuration.
If you specify a Key Name and a Key Locator Reference, select None for the Certificate Path.

Certificate Path Specifies the settings for the certificate path validation. When you select Trust Any, this validation is skipped and all the incoming certificates are trusted. These fields are ignored in sender-side configuration.
If you click Trust Any or select a Trust Anchor and a Certificate Store, select None for the Signing Key in the previous field.
Trust Anchor
The selections available for Trust Anchor are specified by clicking Servers > Application Servers > server. Under Additional Properties, click Web Services: Default bindings for Web Services Security > Trust Anchors.
Certificate Store
The selections available for the Collection Store are specified by clicking Servers > Application Servers > server_name. Under Related Items, click Web Services: Default bindings for Web Services Security > Collection Certificate Store.

See Also
XML digital signature
Signing information collection

Signature Method	Specifies the algorithm Uniform Resource Identifiers (URI) of the signature method. This method contains the actual value of the digital signature encoded using base64. The following algorithms are supported... http://www.w3.org/2000/09/xmldsig#rsa-sha1 http://www.w3.org/2000/09/xmldsig#dsa-sha1
Digest Method	Specifies the algorithm URI of the digest method. The http://www.w3.org/2000/09/xmldsig#sha1 algorithm is supported.
Canonicalization Method	Specifies the algorithm URI of the canonicalization method. The following algorithms are supported... http://www.w3.org/2001/10/xml-exc-c14n# http://www.w3.org/2001/10/xml-exc-c14n#WithComments http://www.w3.org/TR/2001/REC-xml-c14n-20010315 http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments
Signing Key	Specifies the key information that is used for signing. These fields are ignored in receiver-side configuration. If you specify a Key Name and a Key Locator Reference, select None for the Certificate Path.
Certificate Path	Specifies the settings for the certificate path validation. When you select Trust Any, this validation is skipped and all the incoming certificates are trusted. These fields are ignored in sender-side configuration. If you click Trust Any or select a Trust Anchor and a Certificate Store, select None for the Signing Key in the previous field. Trust Anchor The selections available for Trust Anchor are specified by clicking Servers > Application Servers > server. Under Additional Properties, click Web Services: Default bindings for Web Services Security > Trust Anchors. Certificate Store The selections available for the Collection Store are specified by clicking Servers > Application Servers > server_name. Under Related Items, click Web Services: Default bindings for Web Services Security > Collection Certificate Store.