First one should understand what is Digital Signature and why enterprise level applications use this.
Digital Signature is an electronic signature which used to authenticate the sender of the message and ensure the message content is unchanged.We can ensure the original signed message because the sender cannot easily repudiate it later.
Concept of Digital Signatures:
There are few simple steps to explain how Digital Signature works.
Step 1:
Ram sends email with stamping his digital signature by using his private key to Sita
Step 2:
Up on receving email Sita verifies the digital signature in the email with the Ram public Key.
So once both keys matched and verified Sita able to read the message and she can confirm that message was unchanged.
DataPower Implementation:
We can validate the digital signature or sign the digital signatiure on document with the processing actions and public and private self signed certs.
Once we created the private and public key for the digital signature from the crypto tools in DP.We are almost ready to implement the Digital Signature in our Processing Policies.
Example any web services which involved in transmission of highly confidential data.We create a multi-protocal gateway or WSP based on the requirements and after that
To Verify:
1. Go to Processing Policy
2. drag and drop the "verify" Action
3. Create the vliadation credentials and insert the public key for the verification
To Sign
1. Go to Processing Policy
2.Drag and Drop "Sign" Action
3.Create the Key and Certificate with the private key and public cert.
4.Share the public cert with the receiver so that he can verify
