--------------------------------------------------- JVNRSS SIG_rdf sign: jvnrss_sigrdf_sign_2.0.zip --------------------------------------------------- WinSign Multi File version 2.0 for MS-Windows XP CmdSign Multi File version 2.0 for MS-Windows XP ---------------------------------------------------- WinSign Multi File version 2.0 for MS-Windows XP ---------------------------------------------------- 1. About WinSign WinSign is a XML digital signature (Enveloped Signature form) tool which supports: - XML digital signature by X509v3 certificate - Batch processing intended for plural files All files in unsigned XML (Download) folder are signed and outputed to signed XML (Upload) folder. - CRL (Certificate Revocation List) Online Validation - English and Japanese character sets - Signature Specification * DigestMethod: SHA-1 http://www.w3.org/2000/09/xmldsig#sha1 * SignatureMethod: RSA-SHA1 http://www.w3.org/2000/09/xmldsig#rsa-sha1 * CanonicalizationMethod: C14N XML canonicalization transform without comments http://www.w3.org/TR/2001/REC-xml-c14n-20010315 * Transform: Enveloped Signature http://www.w3.org/2000/09/xmldsig#enveloped-signature - [ New ] Timestamp property supported (V2.0) 2. License General License in Feasibility Study Site for JVNRSS and RSS Extension http://jvnrss.ise.chuo-u.ac.jp/jtg/tool/LICENSE.txt 3. Requirements Microsoft Windows XP 4. Installation Install "Microsoft .NET Framework Version 2.0 Redistributable Package (x86)" [1]. Copy all the distribution files to an arbitrary directory. Edit the INI file (xsig.ini) to reflect the configuration of installed directories. --------- xsig.ini ---------- JVNRSS_SIGN [PATH] Bin=C:\winsign\bin\ ... Folder to store Application file Download=C:\winsign\download\ ... Folder to store Raw XML files Upload=C:\winsign\upload\ ... Folder to store Signed XML files Crl=C:\winsign\crl\ ... Folder to which the CRL file is downloaded [LANGUAGE] Language=E ... Language mode of WinSign E:English, J:Japanese --------- xsig.ini ---------- 5. Usage (1) Store XML files in unsigned XML (Download) folder . (2) Execute "winxsig.exe". (3) Select a certificate from the list. Note: Certificate Management function in Windows is used. (4) Click the button "Sign". Note: To execute CRL Online Validation,check the option "CRL Online Validation". (5) XML signature files (added .sig extension) are outputed in signed XML (Upload) folder. 6. Conditions and results of sign Conditions Results of Sign --------------------------------------- --------------- Expiration Date is expire. Failure Certification Path Building is failure. Success CRL of a certificate be found. Failure 7. Download JVNRSS SIG_rdf sign (jvnrss_sigrdf_sign_2.0.zip) 8. Note WinSign is a tool developed by Microsoft Visual Studio 2005 Ver8.0 (C#) and Microsoft .NET Framework Ver2.0. When manipulating the Signed XML Document, a part of Signed XML file character codes might be converted by specification of the XML Document Object Model (DOM)[2] . ---------------------------------------------------- CmdSign Multi File version 2.0 for MS-Windows XP ---------------------------------------------------- 1. About CmdSign CmdSign is command line version XML digital signature (Enveloped Signature form) tool of WinSign which supports: - XML digital signature by X509v3 certificate - Batch processing intended for plural files All files in unsigned XML (Download) folder are signed and outputed to signed XML (Upload) folder. - CRL(Certificate Revocation List) Online Validation - English mode only - Signature Specification * DigestMethod: SHA-1 http://www.w3.org/2000/09/xmldsig#sha1 * SignatureMethod: RSA-SHA1 http://www.w3.org/2000/09/xmldsig#rsa-sha1 * CanonicalizationMethod: C14N XML canonicalization transform without comments http://www.w3.org/TR/2001/REC-xml-c14n-20010315 * Transform: Enveloped Signature http://www.w3.org/2000/09/xmldsig#enveloped-signature - [ New ] Timestamp property supported (V2.0) 2. License General License in Feasibility Study Site for JVNRSS and RSS Extension http://jvnrss.ise.chuo-u.ac.jp/jtg/tool/LICENSE.txt 3. Requirements Microsoft Windows XP 4. Installation Install "Microsoft .NET Framework Version 2.0 Redistributable Package (x86)" [1]. Copy all the distribution files to an arbitrary directory. Edit the INI file (xsig.ini) to reflect the configuration of installed directories. --------- xsig.ini ---------- JVNRSS_SIGN [PATH] Bin=C:\winsign\bin\ ... Folder to store Application file Download=C:\winsign\download\ ... Folder to store Raw XML files Upload=C:\winsign\upload\ ... Folder to store Signed XML files Crl=C:\winsign\crl\ ... Folder to which the CRL file is downloaded Log=C:\winsign\log\ ... Folder to which the Log(xsig.log) file is outputed This parameter is effective only in CmdSign [LANGUAGE] Language= ... Language mode of WinSign This parameter is ineffective in CmdSign [KEY] Thumbprint=17 d2 3d b2 01 15 ... Appoint Certificate thumbprint (20 two-digit hexadecimal number) for signature This parameter is effective only in CmdSign It is unnecessary if appoint Certificate from CmdSign's command line --------- xsig.ini ---------- 5. Usage (1) Store XML files in unsigned XML (Download) folder . (2) Execute "cmdxsig.exe". Note: Refer to the following for CmdSign's command line options. Note: Certificate Management function in Windows is used. (3) XML signature files (added .sig extension) are outputed in signed XML (Upload) folder. --------- cmdxsig.exe ---------- CmdSign's Command Line Options Usage: cmdxsig [options] -c -p file : PKCS#12 Certificate file path password : Certificate password -d Log file(xsig.log)output mode -dd Debugging mode -h Show Help -o CRL Online Validation Example: cmdxsig -d -o cmdxsig -d -c C:\key\jvnrss.pfx -p jvnrss If appoint option "-c -p " and set Inifile key [Thumbprint] , appointed Certificate from CmdSign's command line is priority. --------- cmdxsig.exe ---------- 6. Conditions and results of sign Conditions Results of Sign --------------------------------------- --------------- Expiration Date is expire. Failure Certification Path Building is failure. Success CRL of a certificate be found. Failure 7. Download JVNRSS SIG_rdf sign (jvnrss_sigrdf_sign_2.0.zip) 8. Note CmdSign is a tool developed by Microsoft Visual Studio 2005 Ver8.0 (C#) and Microsoft .NET Framework Ver2.0. When manipulating the Signed XML Document, a part of Signed XML file character codes might be converted by specification of the XML Document Object Model (DOM)[2] . -------------- References -------------- [1] Microsoft .NET Framework Version 2.0 Redistributable Package (x86), http://www.microsoft.com/downloads/details.aspx?FamilyID=0856EACB-4362-4B0D-8EDD-AAB15C5E04F5&displaylang=en [2] Entity References are Expanded and Not Preserved, http://msdn2.microsoft.com/en-us/library/bk9tc7f9.aspx ------------- Revisions ------------- Version 1.0 Rev.2006-09-04: New release Version 1.0 Rev.2006-10-09: Added Signature Specification Version 1.0 Rev.2006-12-01: Minor updated Version 2.0 Rev.2006-12-24: New release (Timestamp property supported)