Explain the relevance of canonical XML to digital signatures. What contextual information can be included in the canonical form? Give an example of a breach of security where the context is omitted from canonical form
What will be an ideal response?
Digital signatures are used to ensure that the information content has not changed since the document was digitally signed. The signature is initially generated using a digest calculation based on the canonical form of the document, which eliminates insignificant differences. After its transmission, the receiving application applies the same algorithm to the document, producing another digest of the canonical form, and the two digests are compared. If they differ, it means the canonical forms differ, so the document must have been altered since it was signed.
The contextual information consists of all of the namespaces declared and the values of attributes that surround a particular XML element. The inclusion of context in canonical XML ensures that the particular element cannot be used out of context - or in a different context.
If the context is omitted, the canonicalised element can be placed in a different context. For example, the value of an attribute in the context may be crucial to the document being signed. It might for example, be an exchange rate.
You might also like to view...
You can only sort records in a table that has already been filtered.
Answer the following statement true (T) or false (F)
To add a node into a pane, use ______.
a. pane.add(node); b. pane.addAll(node); c. pane.getChildren().add(node); d. pane.getChildren().addAll(node);
The ________ text in a form is used as a placeholder so that the person filling in the form knows what to do
A) tag B) default C) label D) title
__________ is a generic block-level element and ____________ is a generic in-line element.
