XmlDsigC14NWithCommentsTransform Klasse
Definition
Wichtig
Einige Informationen beziehen sich auf Vorabversionen, die vor dem Release ggf. grundlegend überarbeitet werden. Microsoft übernimmt hinsichtlich der hier bereitgestellten Informationen keine Gewährleistungen, seien sie ausdrücklich oder konkludent.
Stellt die C14N-XML-Kanonisierungstransformation für eine digitale Signatur dar, die vom World Wide Web Consortium (W3C) mit Kommentaren definiert wird.
public ref class XmlDsigC14NWithCommentsTransform : System::Security::Cryptography::Xml::XmlDsigC14NTransformpublic class XmlDsigC14NWithCommentsTransform : System.Security.Cryptography.Xml.XmlDsigC14NTransformtype XmlDsigC14NWithCommentsTransform = class
inherit XmlDsigC14NTransformPublic Class XmlDsigC14NWithCommentsTransform
Inherits XmlDsigC14NTransform- Vererbung
Beispiele
Dieser Abschnitt enthält zwei Codebeispiele. Im ersten Beispiel wird das Signieren einer XML-Datei mithilfe einer getrennten Signatur veranschaulicht. In diesem Beispiel wird eine Signatur www.microsoft.com in einer XML-Datei erstellt und anschließend die Datei überprüft. Im zweiten Beispiel wird das Signieren einer XML-Datei mithilfe einer Umschlagsignatur veranschaulicht. In diesem Beispiel wird eine Signatur einer XML-Datei erstellt und anschließend die Signatur in einer neuen XML-Datei gespeichert.
Beispiel Nr. 1
//
// This example signs a file specified by a URI
// using a detached signature. It then verifies
// the signed XML.
//
using System;
using System.Security.Cryptography;
using System.Security.Cryptography.Xml;
using System.Text;
using System.Xml;
class XMLDSIGDetached
{
[STAThread]
static void Main(string[] args)
{
// The URI to sign.
string resourceToSign = "http://www.microsoft.com";
// The name of the file to which to save the XML signature.
string XmlFileName = "xmldsig.xml";
try
{
// Generate a signing key.
RSA Key = RSA.Create();
Console.WriteLine("Signing: {0}", resourceToSign);
// Sign the detached resourceand save the signature in an XML file.
SignDetachedResource(resourceToSign, XmlFileName, Key);
Console.WriteLine("XML signature was successfully computed and saved to {0}.", XmlFileName);
// Verify the signature of the signed XML.
Console.WriteLine("Verifying signature...");
//Verify the XML signature in the XML file.
bool result = VerifyDetachedSignature(XmlFileName);
// Display the results of the signature verification to
// the console.
if(result)
{
Console.WriteLine("The XML signature is valid.");
}
else
{
Console.WriteLine("The XML signature is not valid.");
}
}
catch(CryptographicException e)
{
Console.WriteLine(e.Message);
}
}
// Sign an XML file and save the signature in a new file.
public static void SignDetachedResource(string URIString, string XmlSigFileName, RSA Key)
{
// Create a SignedXml object.
SignedXml signedXml = new SignedXml();
// Assign the key to the SignedXml object.
signedXml.SigningKey = Key;
// Create a reference to be signed.
Reference reference = new Reference();
// Add the passed URI to the reference object.
reference.Uri = URIString;
// Add the reference to the SignedXml object.
signedXml.AddReference(reference);
// Add an RSAKeyValue KeyInfo (optional; helps recipient find key to validate).
KeyInfo keyInfo = new KeyInfo();
keyInfo.AddClause(new RSAKeyValue((RSA)Key));
signedXml.KeyInfo = keyInfo;
// Compute the signature.
signedXml.ComputeSignature();
// Get the XML representation of the signature and save
// it to an XmlElement object.
XmlElement xmlDigitalSignature = signedXml.GetXml();
// Save the signed XML document to a file specified
// using the passed string.
XmlTextWriter xmltw = new XmlTextWriter(XmlSigFileName, new UTF8Encoding(false));
xmlDigitalSignature.WriteTo(xmltw);
xmltw.Close();
}
// Verify the signature of an XML file and return the result.
public static Boolean VerifyDetachedSignature(string XmlSigFileName)
{
// Create a new XML document.
XmlDocument xmlDocument = new XmlDocument();
// Load the passed XML file into the document.
xmlDocument.Load(XmlSigFileName);
// Create a new SignedXMl object.
SignedXml signedXml = new SignedXml();
// Find the "Signature" node and create a new
// XmlNodeList object.
XmlNodeList nodeList = xmlDocument.GetElementsByTagName("Signature");
// Load the signature node.
signedXml.LoadXml((XmlElement)nodeList[0]);
// Check the signature and return the result.
return signedXml.CheckSignature();
}
}
' This example signs a file specified by a URI
' using a detached signature. It then verifies
' the signed XML.
Imports System.Security.Cryptography
Imports System.Security.Cryptography.Xml
Imports System.Text
Imports System.Xml
Class XMLDSIGDetached
<STAThread()> _
Overloads Shared Sub Main(args() As String)
' The URI to sign.
Dim resourceToSign As String = "http://www.microsoft.com"
' The name of the file to which to save the XML signature.
Dim XmlFileName As String = "xmldsig.xml"
Try
' Generate a signing key.
Dim Key As RSA = RSA.Create()
Console.WriteLine("Signing: {0}", resourceToSign)
' Sign the detached resourceand save the signature in an XML file.
SignDetachedResource(resourceToSign, XmlFileName, Key)
Console.WriteLine("XML signature was successfully computed and saved to {0}.", XmlFileName)
' Verify the signature of the signed XML.
Console.WriteLine("Verifying signature...")
'Verify the XML signature in the XML file.
Dim result As Boolean = VerifyDetachedSignature(XmlFileName)
' Display the results of the signature verification to
' the console.
If result Then
Console.WriteLine("The XML signature is valid.")
Else
Console.WriteLine("The XML signature is not valid.")
End If
Catch e As CryptographicException
Console.WriteLine(e.Message)
End Try
End Sub
' Sign an XML file and save the signature in a new file.
Public Shared Sub SignDetachedResource(URIString As String, XmlSigFileName As String, Key As RSA)
' Create a SignedXml object.
Dim signedXml As New SignedXml()
' Assign the key to the SignedXml object.
signedXml.SigningKey = Key
' Create a reference to be signed.
Dim reference As New Reference()
' Add the passed URI to the reference object.
reference.Uri = URIString
' Add the reference to the SignedXml object.
signedXml.AddReference(reference)
' Add an RSAKeyValue KeyInfo (optional; helps recipient find key to validate).
Dim keyInfo As New KeyInfo()
keyInfo.AddClause(New RSAKeyValue(CType(Key, RSA)))
signedXml.KeyInfo = keyInfo
' Compute the signature.
signedXml.ComputeSignature()
' Get the XML representation of the signature and save
' it to an XmlElement object.
Dim xmlDigitalSignature As XmlElement = signedXml.GetXml()
' Save the signed XML document to a file specified
' using the passed string.
Dim xmltw As New XmlTextWriter(XmlSigFileName, New UTF8Encoding(False))
xmlDigitalSignature.WriteTo(xmltw)
xmltw.Close()
End Sub
' Verify the signature of an XML file and return the result.
Public Shared Function VerifyDetachedSignature(XmlSigFileName As String) As [Boolean]
' Create a new XML document.
Dim xmlDocument As New XmlDocument()
' Load the passed XML file into the document.
xmlDocument.Load(XmlSigFileName)
' Create a new SignedXMl object.
Dim signedXml As New SignedXml()
' Find the "Signature" node and create a new
' XmlNodeList object.
Dim nodeList As XmlNodeList = xmlDocument.GetElementsByTagName("Signature")
' Load the signature node.
signedXml.LoadXml(CType(nodeList(0), XmlElement))
' Check the signature and return the result.
Return signedXml.CheckSignature()
End Function
End Class
Beispiel Nr. 2
// This example signs an XML file using an
// envelope signature. It then verifies the
// signed XML.
using System;
using System.Security.Cryptography;
using System.Security.Cryptography.Xml;
using System.Text;
using System.Xml;
public class SignVerifyEnvelope
{
public static void Main(String[] args)
{
try
{
// Generate a signing key.
RSA Key = RSA.Create();
// Create an XML file to sign.
CreateSomeXml("Example.xml");
Console.WriteLine("New XML file created.");
// Sign the XML that was just created and save it in a
// new file.
SignXmlFile("Example.xml", "SignedExample.xml", Key);
Console.WriteLine("XML file signed.");
// Verify the signature of the signed XML.
Console.WriteLine("Verifying signature...");
bool result = VerifyXmlFile("SignedExample.xml");
// Display the results of the signature verification to \
// the console.
if(result)
{
Console.WriteLine("The XML signature is valid.");
}
else
{
Console.WriteLine("The XML signature is not valid.");
}
}
catch(CryptographicException e)
{
Console.WriteLine(e.Message);
}
}
// Sign an XML file and save the signature in a new file.
public static void SignXmlFile(string FileName, string SignedFileName, RSA Key)
{
// Create a new XML document.
XmlDocument doc = new XmlDocument();
// Format the document to ignore white spaces.
doc.PreserveWhitespace = false;
// Load the passed XML file using it's name.
doc.Load(new XmlTextReader(FileName));
// Create a SignedXml object.
SignedXml signedXml = new SignedXml(doc);
// Add the key to the SignedXml document.
signedXml.SigningKey = Key;
// Create a reference to be signed.
Reference reference = new Reference();
reference.Uri = "";
// Add an enveloped transformation to the reference.
XmlDsigEnvelopedSignatureTransform env = new XmlDsigEnvelopedSignatureTransform();
reference.AddTransform(env);
// Add the reference to the SignedXml object.
signedXml.AddReference(reference);
// Add an RSAKeyValue KeyInfo (optional; helps recipient find key to validate).
KeyInfo keyInfo = new KeyInfo();
keyInfo.AddClause(new RSAKeyValue((RSA)Key));
signedXml.KeyInfo = keyInfo;
// Compute the signature.
signedXml.ComputeSignature();
// Get the XML representation of the signature and save
// it to an XmlElement object.
XmlElement xmlDigitalSignature = signedXml.GetXml();
// Append the element to the XML document.
doc.DocumentElement.AppendChild(doc.ImportNode(xmlDigitalSignature, true));
if (doc.FirstChild is XmlDeclaration)
{
doc.RemoveChild(doc.FirstChild);
}
// Save the signed XML document to a file specified
// using the passed string.
XmlTextWriter xmltw = new XmlTextWriter(SignedFileName, new UTF8Encoding(false));
doc.WriteTo(xmltw);
xmltw.Close();
}
// Verify the signature of an XML file and return the result.
public static Boolean VerifyXmlFile(String Name)
{
// Create a new XML document.
XmlDocument xmlDocument = new XmlDocument();
// Format using white spaces.
xmlDocument.PreserveWhitespace = true;
// Load the passed XML file into the document.
xmlDocument.Load(Name);
// Create a new SignedXml object and pass it
// the XML document class.
SignedXml signedXml = new SignedXml(xmlDocument);
// Find the "Signature" node and create a new
// XmlNodeList object.
XmlNodeList nodeList = xmlDocument.GetElementsByTagName("Signature");
// Load the signature node.
signedXml.LoadXml((XmlElement)nodeList[0]);
// Check the signature and return the result.
return signedXml.CheckSignature();
}
// Create example data to sign.
public static void CreateSomeXml(string FileName)
{
// Create a new XmlDocument object.
XmlDocument document = new XmlDocument();
// Create a new XmlNode object.
XmlNode node = document.CreateNode(XmlNodeType.Element, "", "MyElement", "samples");
// Add some text to the node.
node.InnerText = "Example text to be signed.";
// Append the node to the document.
document.AppendChild(node);
// Save the XML document to the file name specified.
XmlTextWriter xmltw = new XmlTextWriter(FileName, new UTF8Encoding(false));
document.WriteTo(xmltw);
xmltw.Close();
}
}
' This example signs an XML file using an
' envelope signature. It then verifies the
' signed XML.
Imports System.Security.Cryptography
Imports System.Security.Cryptography.Xml
Imports System.Text
Imports System.Xml
Public Class SignVerifyEnvelope
Overloads Public Shared Sub Main(args() As [String])
Try
' Generate a signing key.
Dim Key As RSA = RSA.Create()
' Create an XML file to sign.
CreateSomeXml("Example.xml")
Console.WriteLine("New XML file created.")
' Sign the XML that was just created and save it in a
' new file.
SignXmlFile("Example.xml", "SignedExample.xml", Key)
Console.WriteLine("XML file signed.")
' Verify the signature of the signed XML.
Console.WriteLine("Verifying signature...")
Dim result As Boolean = VerifyXmlFile("SignedExample.xml")
' Display the results of the signature verification to \
' the console.
If result Then
Console.WriteLine("The XML signature is valid.")
Else
Console.WriteLine("The XML signature is not valid.")
End If
Catch e As CryptographicException
Console.WriteLine(e.Message)
End Try
End Sub
' Sign an XML file and save the signature in a new file.
Public Shared Sub SignXmlFile(FileName As String, SignedFileName As String, Key As RSA)
' Create a new XML document.
Dim doc As New XmlDocument()
' Format the document to ignore white spaces.
doc.PreserveWhitespace = False
' Load the passed XML file using it's name.
doc.Load(New XmlTextReader(FileName))
' Create a SignedXml object.
Dim signedXml As New SignedXml(doc)
' Add the key to the SignedXml document.
signedXml.SigningKey = Key
' Create a reference to be signed.
Dim reference As New Reference()
reference.Uri = ""
' Add an enveloped transformation to the reference.
Dim env As New XmlDsigEnvelopedSignatureTransform()
reference.AddTransform(env)
' Add the reference to the SignedXml object.
signedXml.AddReference(reference)
' Add an RSAKeyValue KeyInfo (optional; helps recipient find key to validate).
Dim keyInfo As New KeyInfo()
keyInfo.AddClause(New RSAKeyValue(CType(Key, RSA)))
signedXml.KeyInfo = keyInfo
' Compute the signature.
signedXml.ComputeSignature()
' Get the XML representation of the signature and save
' it to an XmlElement object.
Dim xmlDigitalSignature As XmlElement = signedXml.GetXml()
' Append the element to the XML document.
doc.DocumentElement.AppendChild(doc.ImportNode(xmlDigitalSignature, True))
If TypeOf doc.FirstChild Is XmlDeclaration Then
doc.RemoveChild(doc.FirstChild)
End If
' Save the signed XML document to a file specified
' using the passed string.
Dim xmltw As New XmlTextWriter(SignedFileName, New UTF8Encoding(False))
doc.WriteTo(xmltw)
xmltw.Close()
End Sub
' Verify the signature of an XML file and return the result.
Public Shared Function VerifyXmlFile(Name As [String]) As [Boolean]
' Create a new XML document.
Dim xmlDocument As New XmlDocument()
' Format using white spaces.
xmlDocument.PreserveWhitespace = True
' Load the passed XML file into the document.
xmlDocument.Load(Name)
' Create a new SignedXml object and pass it
' the XML document class.
Dim signedXml As New SignedXml(xmlDocument)
' Find the "Signature" node and create a new
' XmlNodeList object.
Dim nodeList As XmlNodeList = xmlDocument.GetElementsByTagName("Signature")
' Load the signature node.
signedXml.LoadXml(CType(nodeList(0), XmlElement))
' Check the signature and return the result.
Return signedXml.CheckSignature()
End Function
' Create example data to sign.
Public Shared Sub CreateSomeXml(FileName As String)
' Create a new XmlDocument object.
Dim document As New XmlDocument()
' Create a new XmlNode object.
Dim node As XmlNode = document.CreateNode(XmlNodeType.Element, "", "MyElement", "samples")
' Add some text to the node.
node.InnerText = "Example text to be signed."
' Append the node to the document.
document.AppendChild(node)
' Save the XML document to the file name specified.
Dim xmltw As New XmlTextWriter(FileName, New UTF8Encoding(False))
document.WriteTo(xmltw)
xmltw.Close()
End Sub
End Class
Hinweise
Die XmlDsigC14NWithCommentsTransform Klasse stellt die C14N XML-Kanonisierungstransformation dar, die die kanonische Form eines XML-Dokuments beschreibt. Diese Transformation ermöglicht es einem Signierer, einen Digest mithilfe der kanonischen Form eines XML-Dokuments zu erstellen. Ein Empfänger kann dann die digitale Signatur mit derselben kanonischen Form des XML-Dokuments mit derselben Transformation überprüfen.
Verwenden Sie die XmlDsigC14NWithCommentsTransform Klasse, wenn Sie ein XML-Dokument signieren müssen, das Kommentare enthält.
Beachten Sie, dass Sie keine neue Instanz einer kanonischen Transformationsklasse direkt erstellen können. Um eine kanonische Transformation anzugeben, übergeben Sie den URI (Uniform Resource Identifier), der die Transformation in die Eigenschaft beschreibt, auf die CanonicalizationMethod über die SignedInfo Eigenschaft zugegriffen werden kann. Um einen Verweis auf die Kanonisierungstransformation zu erhalten, verwenden Sie die CanonicalizationMethodObject Eigenschaft, auf die über die SignedInfo Eigenschaft zugegriffen werden kann.
Der URI, der die XmlDsigExcC14NWithCommentsTransform Klasse beschreibt, wird durch das XmlDsigExcC14NWithCommentsTransformUrl Feld definiert.
Der URI, der die XmlDsigC14NWithCommentsTransform Klasse beschreibt, wird durch das XmlDsigC14NWithCommentsTransformUrl Feld und das XmlDsigCanonicalizationWithCommentsUrl Feld definiert.
Weitere Informationen zur C14N-Transformation mit Kommentaren finden Sie in den Abschnitten 6.5 und 6.6.1 der W3C XMLDSIG-Spezifikation. Der Kanonisierungsalgorithmus wird in der kanonischen XML-Spezifikation von W3C definiert.
Konstruktoren
| Name | Beschreibung |
|---|---|
| XmlDsigC14NWithCommentsTransform() |
Initialisiert eine neue Instanz der XmlDsigC14NWithCommentsTransform-Klasse. |
Eigenschaften
| Name | Beschreibung |
|---|---|
| Algorithm |
Dient zum Abrufen oder Festlegen des URI (Uniform Resource Identifier), der den Algorithmus identifiziert, der von der aktuellen Transformation ausgeführt wird. (Geerbt von Transform) |
| Context |
Dient zum Abrufen oder Festlegen eines XmlElement Objekts, das den Dokumentkontext darstellt, unter dem das aktuelle Transform Objekt ausgeführt wird. (Geerbt von Transform) |
| InputTypes |
Ruft ein Array von Typen ab, die gültige Eingaben für die LoadInput(Object) Methode des aktuellen XmlDsigC14NTransform Objekts sind. (Geerbt von XmlDsigC14NTransform) |
| OutputTypes |
Ruft ein Array von Typen ab, die mögliche Ausgaben aus den GetOutput() Methoden des aktuellen XmlDsigC14NTransform Objekts sind. (Geerbt von XmlDsigC14NTransform) |
| PropagatedNamespaces |
Dient zum Abrufen oder Festlegen eines Hashtable Objekts, das die Namespaces enthält, die in die Signatur weitergegeben werden. (Geerbt von Transform) |
| Resolver |
Legt das aktuelle XmlResolver Objekt fest. (Geerbt von Transform) |
Methoden
| Name | Beschreibung |
|---|---|
| Equals(Object) |
Bestimmt, ob das angegebene Objekt dem aktuellen Objekt entspricht. (Geerbt von Object) |
| GetDigestedOutput(HashAlgorithm) |
Gibt den Digest zurück, der einem XmlDsigC14NTransform Objekt zugeordnet ist. (Geerbt von XmlDsigC14NTransform) |
| GetHashCode() |
Dient als Standardhashfunktion. (Geerbt von Object) |
| GetInnerXml() |
Gibt eine XML-Darstellung der Parameter eines XmlDsigC14NTransform Objekts zurück, die als Unterelemente eines XMLDSIG-Elements |
| GetOutput() |
Gibt die Ausgabe des aktuellen XmlDsigC14NTransform Objekts zurück. (Geerbt von XmlDsigC14NTransform) |
| GetOutput(Type) |
Gibt die Ausgabe des aktuellen XmlDsigC14NTransform Objekts vom Typ Streamzurück. (Geerbt von XmlDsigC14NTransform) |
| GetType() |
Ruft die Type der aktuellen Instanz ab. (Geerbt von Object) |
| GetXml() |
Gibt die XML-Darstellung des aktuellen Transform Objekts zurück. (Geerbt von Transform) |
| LoadInnerXml(XmlNodeList) |
Analysiert das angegebene XmlNodeList Objekt als transformspezifischen Inhalt eines |
| LoadInput(Object) |
Lädt die angegebene Eingabe in das aktuelle XmlDsigC14NTransform Objekt. (Geerbt von XmlDsigC14NTransform) |
| MemberwiseClone() |
Erstellt eine flache Kopie der aktuellen Object. (Geerbt von Object) |
| ToString() |
Gibt eine Zeichenfolge zurück, die das aktuelle Objekt darstellt. (Geerbt von Object) |
