Sign with the originator private RSA or DSA key, and verify with the originator public RSA or DSA key

Use if the receiver of the XML document has the RSA or DSA public key of the sender.

Only the originator can sign a message with this specific pair of keys. Any other peer needs the corresponding public key and does not have access to the private key.

How to sign

  1. Create a RSA or DSA key with the constructor of the CryptoKey class.
  2. Load the RSA or DSA private key into the CryptoKey object.
  3. Create a blank signature with the constructor of the Signature class.
  4. Assign the CryptoKey object to the Signature object.
  5. Create one or more references to be signed.
  6. Compute the signature.
  7. Retrieve the XML signature document from the Signature object.

How to verify

  1. Create a RSA or DSA key with the constructor of the CryptoKey class.
  2. Load the RSA or DSA public key into the CryptoKey object.
  3. Create a signature with the constructor of the Signature class and from a XML signature node obtained after the above compute operation.
  4. Assign the CryptoKey object to the Signature object.
  5. Verify the signature validity.