使用远程小程序设备进行XML签名 [英] Xml signing with remote applet devices

问题描述

所有文件都存储在云系统中。文件的平均大小为200MB。文件的大小非常大。客户端还提供USB令牌。我不想将整个文件从服务器传输到客户端。我只想在客户端签名文件的哈希。
如何使用xades4j库执行此操作？

All files are stored in the cloud system. The average size of file 200MB.Very large size of the files.Also Usb token on the client side. I don't want to transfer entire file from the server to client. I just want to sign the hash of the file on the client side. How can I do this with the xades4j library?

推荐答案

我不确定我是否完全理解，但是这里有一些想法：

I'm not sure I fully understood, but here are some ideas:

• 使文件可通过HTTP访问。 Xade4j（实际上是底层的Apache Santuario）已经支持HTTP数据对象引用。这要求将文件下载到客户端，这可能是错误的/不希望的。该文件将作为常规签名生成的一部分进行摘要（散列）。

• Make the file accessible via HTTP. Xade4j (actually, the underlying Apache Santuario) already supports HTTP data object references. This requires that the file is downloaded to the client, which can be bad/undesirable. The file will be digested (hashed) as part of the normal signature production.

使用匿名数据对象引用，该引用是通过文件的哈希创建的，如图所示此处： https://code.google.com/p/xades4j/wiki/DefiningSignedResources。此值是数据对象引用的输入，这意味着它实际上会再次被消化，但这不应该成为问题。

Use an anonymous data object reference, created with the hash of the file as illustrated here: https://code.google.com/p/xades4j/wiki/DefiningSignedResources. This value is the input for the data object reference, which means it will actually be digested again, but that shouldn't be a problem.

使用EnvelopedXmlObject封闭哈希。在与上述相同的页面中进行解释。

Use an EnvelopedXmlObject enclosing the hash. Explained in the same page as above.

这篇关于使用远程小程序设备进行XML签名的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！