CRYPTO NEWS

xmldsig: How signature value is calculated?

Hi I’ve an xml file signed with a private-key, when I take sha1-sum of field <greet xml:id="world">hello</greet> its getting verified but when i try to verify signatureValue by signing above data with the same key using openssl, it’s not matching, I tried signing digest & actual data, any help?
document is getting verified normally with a public key.

<?xml version="1.0"?>
<envelope>
<id>1234</id>
<greet xml:id="world">hello</greet>
<Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
<SignedInfo>
<CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315"/>
<SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<Reference URI="#world">
<Transforms>
<Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>D5AnZ0DBBraNTkNrDSKUxZCR0QU=</DigestValue>
</Reference>
</SignedInfo>
<SignatureValue>A9P1IxdCM4LoD53hRJjzmdOSPqFhld4sgtXthM2PMsGura9XwvcqUNMLFa6Df8b+
BLUB7OVuzsyIlulvyvRUsmv5L9SyBdTSy5yzDpQK+Lua7wKsX65jq3wUSpH/E4Ej
boKTHirDQMGvYEndpX4pev/mZAwpnDsJfgD0SBrvFnUZjFMpsImXT9wW6H3GNTTH
MF4ks7WDuAJvTtp5xVg5tuL7h8e35M6gWrNr7x5ED1Tpy7gXkAtq6xL3L44BJ1uo
sqPyWMEaq18SauzNLX/+KgyXByqid9K8p5xq4I8tWoF6YQ8JkXHvK8kEkjdPfaOq
QXQyfgT/JhGjaZC7AIxXZQ==
</SignatureValue>
</Signature>
</envelope>

maketool. scam website

I believe this scam site stole 4k in a bunch of different crypto assets me. Also using a fake ledger support on Facebook and Reddit. I was new to trying to link my Ledger Live and Trust Wallet and i used this website for help. Then week later in middle of night all my hard-earned::Listen

I believe this scam site stole 4k in a bunch of different crypto assets me. Also using a fake ledger support on Facebook and Reddit. I was new to trying to link my Ledger Live and Trust Wallet and i used this website for help. Then week later in middle of night all my hard-earned asset were taken from me. Any ideas on how to recover them? I did report to local authorities,FTC,and IC3.Also now ledger probably corrupt. I have some Polkadot on there I don’t understand how to get it off the ledger?

xmldsig: How signature value is calculated?

Shopping cart
There are no products in the cart!
Continue shopping
0