[B! é›»åç½²å] shin-uemonã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯

shin-uemon id:shin-uemon

é›»åç½²åã«é–¢ã™ã‚‹shin-uemonã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯ (10)

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

${{author_name}}$
{{author_name}}{{created}}
{{ #comment }}{{ comment }}{{ /comment }}
- {{ label }}

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

Technical documentation
shin-uemon 2006/11/06
X.509

ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£

é›»åç½²å

ãƒ‡ã‚¸ã‚¿ãƒ«ç½²å
ãƒªãƒ³ã‚¯
XML Signature Syntax and Processing Version 1.1
XML Signature Syntax and Processing Version 1.1 W3C Recommendation 11 April 2013 This version: http://www.w3.org/TR/2013/REC-xmldsig-core1-20130411/ Latest published version: http://www.w3.org/TR/xmldsig-core1/ Latest editor's draft: http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-11/ Previous version: http://www.w3.org/TR/2013/PR-xmldsig-core1-20130124/ Editors: Donald Eastlake, d3e3e3@gmail.co
shin-uemon 2006/11/06
ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£

ãƒ‡ã‚¸ã‚¿ãƒ«ç½²å

é›»åç½²å

XML
ãƒªãƒ³ã‚¯
XMLéµç®¡ç†ã‚µãƒ¼ãƒ“ã‚¹ï¼ˆXKMSï¼‰ã¨XMLãƒ—ãƒãƒˆã‚³ãƒ«ï¼ˆSOAPï¼‰
XMLéµç®¡ç†ã‚µãƒ¼ãƒ“ã‚¹ï¼ˆXKMSï¼‰ã¨XMLãƒ—ãƒãƒˆã‚³ãƒ«ï¼ˆSOAPï¼‰ï¼šWebã‚µãƒ¼ãƒ“ã‚¹ã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ï¼ˆ3ï¼‰ï¼ˆ1/2 ãƒšãƒ¼ã‚¸ï¼‰ ã€Œç¬¬1å›žã€€Webã‚µãƒ¼ãƒ“ã‚¹ã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£æ¦‚è¦ã€ã§ã¯ã€Webã‚µãƒ¼ãƒ“ã‚¹ãƒ»ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã®ãƒ•ãƒ¬ãƒ¼ãƒ ãƒ¯ãƒ¼ã‚¯ã‚’è¿°ã¹ã€ã€Œç¬¬2å›žã€€XMLãƒ‡ã‚¸ã‚¿ãƒ«ç½²åã¨XMLæš—å·ã€ã§ã¯ã€XMLç½²åã¨XMLæš—å·ã«ã¤ã„ã¦è¿°ã¹ãŸã€‚ä»Šå›žã¯ã€XMLãƒ‡ã‚¸ã‚¿ãƒ«ç½²åã¨XMLæš—å·ã‚’å‡¦ç†ã™ã‚‹éš›ã«å¿…è¦ãªéµæƒ…å ±ã®ã€ç™»éŒ²ã¨æ¤œè¨¼ã‚’ã€å¤–éƒ¨ã®ã‚µãƒ¼ãƒ“ã‚¹ã«ä¾é ¼ã™ã‚‹ä»•çµ„ã¿ã‚’å®šã‚ãŸXKMSã¨ã€ã“ã‚Œã‚‰ã®æƒ…å ±ã‚’ä¼é”ã™ã‚‹ãŸã‚ã®XMLãƒ—ãƒãƒˆã‚³ãƒ«SOAPã«ã¤ã„ã¦è¿°ã¹ã‚‹ã€‚ XKMSã¯ã€XMLç½²åã‚„XMLæš—å·ã‚’å‡¦ç†ã™ã‚‹ãŸã‚ã«å¿…è¦ã§ã‚ã‚‹è¤‡é›‘ãªéµç®¡ç†ã®å‡¦ç†ã‚’å¤–éƒ¨ã«å§”è¨—ã™ã‚‹ã“ã¨ã§ã€Webã‚µãƒ¼ãƒ“ã‚¹ã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ãƒ»ã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³ã‚’å®¹æ˜“ã«é–‹ç™ºã™ã‚‹ã“ã¨ã‚’å¯èƒ½ã«ã™ã‚‹ã€‚SOAPã¯ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã®ãƒ—ãƒãƒˆã‚³ãƒ«ã§ã¯ãªã„ãŒã€Webã‚µãƒ¼ãƒ“ã‚¹ã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã®ãƒ—ãƒãƒˆã‚³ãƒ«ã‚’ã€ã‚¨ãƒ³ãƒ™ãƒãƒ¼ãƒ—ï¼ˆä»˜åŠ æƒ…
shin-uemon 2006/10/04
ãƒ‡ã‚¸ã‚¿ãƒ«ç½²å

é›»åç½²å

XML Signature

ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£
ãƒªãƒ³ã‚¯
http://www.ipa.go.jp/security/fy10/contents/over-all/email.html
shin-uemon 2006/10/04
é›»åç½²å

ãƒ‡ã‚¸ã‚¿ãƒ«ç½²å

ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£
ãƒªãƒ³ã‚¯
X.509 ã®è§£èª¬
ã‚¤ãƒ³ã‚¿ãƒ¼ãƒãƒƒãƒˆã®æ™®åŠã«ä¼´ã„å…¬é–‹éµæš—å·æ–¹å¼ã¯å¿…é ˆã®æŠ€è¡“ã¨ãªã£ã¦ããŸã€‚å…¬é–‹éµæš—å·æ–¹å¼ã‚’åˆ©ç”¨ã™ã‚‹éš›ã«ã¯ã€æš—å·åŒ–ãƒ»ç½²åã®æ¤œè¨¼ãªã©ã‚’è¡Œã†ãŸã‚ã«äº‹å‰ã«æ£ã—ã„å…¬é–‹éµãŒé…å¸ƒã•ã‚Œã¦ã„ã‚‹ã“ã¨ãŒå‰æã¨ãªã‚‹ã€‚ å°‘æ•°ã®é™ã‚‰ã‚ŒãŸç¯„å›²å†…ã§ã®åˆ©ç”¨ã§ã‚ã‚Œã°ã€ç›´æŽ¥å¯¾é¢ãªã©ã®æ‰‹æ®µã«ã‚ˆã‚Šå®‰å…¨ã«å…¬é–‹éµã‚’æµå¸ƒã™ã‚‹ã“ã¨ãŒå¯èƒ½ã§ã‚ã‚‹ãŒã€ã‚¤ãƒ³ã‚¿ãƒ¼ãƒãƒƒãƒˆã®ã‚ˆã†ãªå¤šæ•°ã§åºƒç¯„å›²ã«æ¸¡ã‚‹é€šä¿¡ã«ãŠã„ã¦ã¯ä¸å¯èƒ½ã§ã‚ã‚‹ã€‚ ãã“ã§å€‹äººã€ çµ„ç¹”ã€ ã‚µãƒ¼ãƒã«å¯¾ã™ã‚‹å…¬é–‹éµã®æ£å½“æ€§ã‚’ä¿è¨¼ã™ã‚‹ä¿¡ç”¨ã®ãŠã‘ã‚‹ç¬¬3è€…æ©Ÿé–¢ (trusted third party) ã§ã‚ã‚‹èªè¨¼å±€ (Certificate Authority) ã¨ã„ã†æ¦‚å¿µãŒç”Ÿã¾ã‚ŒãŸã€‚ èªè¨¼å±€ã§ã¯åˆ©ç”¨è€…ã¨å…¬é–‹éµã®å¯¾ã‚’èªè¨¼å±€ï¼ˆã®ç§˜å¯†éµï¼‰ã«ã‚ˆã‚‹ãƒ‡ã‚¸ã‚¿ãƒ«ç½²åã—ãŸã€Œå…¬é–‹éµè¨¼æ˜Žæ›¸ã€ã‚’ç™ºè¡Œã™ã‚‹ã€‚å…¬é–‹éµè¨¼æ˜Žæ›¸ã‚’æ¤œè¨¼ã™ã‚‹å´ã§ã¯å…¬é–‹éµè¨¼æ˜Žæ›¸ã®ï¼ˆèªè¨¼å±€ã«ã‚ˆã‚‹ï¼‰ç½²åã‚’æ¤œè¨¼ã—ã¦ã€å…¬é–‹éµãŒæ£å½“ãªã‚‚ã®ã§ã‚ã‚‹ã‹ã©ã†ã‹ç¢ºèªã™ã‚‹ã“
shin-uemon 2006/10/04
é›»åç½²å

ãƒ‡ã‚¸ã‚¿ãƒ«ç½²å

X.509

è¨¼æ˜Žæ›¸

ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£
ãƒªãƒ³ã‚¯
JavaKey-01 Keytool
Javaã«ã¯ãƒ‡ã‚¸ã‚¿ãƒ«è¨¼æ˜Žæ›¸ã‚’ä½œæˆã—ãŸã‚Šã€ãã®è¨¼æ˜Žæ›¸ã‚’ä½¿ã£ã¦jarãƒ•ã‚¡ã‚¤ãƒ«ã«ãƒ‡ã‚¸ã‚¿ãƒ«ç½²åã‚’ã—ãŸã‚Šã™ã‚‹ã“ã¨ãŒã§ãã‚‹ ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ãƒ¼ãƒ„ãƒ¼ãƒ«ç¾¤ãŒã¤ã„ã¦ã„ã‚‹ã€‚ ã“ã“ã§ã¯ãã‚Œã‚‰ã‚’ä½¿ã£ã¦ã¿ã‚ˆã†ã€‚ JDK 1.3ã«ã¯ï¼“ã¤ã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ãƒ»ãƒ„ãƒ¼ãƒ«ãŒä»˜å±žã—ã¦ã„ã‚‹ã€‚ keytool jarsigner policytool keytoolã¯è¨¼æ˜Žæ›¸ã®ä½œæˆãªã©ã«ä½¿ç”¨ã™ã‚‹ãƒ„ãƒ¼ãƒ«ã€‚ã¾ãšã¯ã“ã‚Œã‚’ä½¿ã†ã€‚ jarsignerã¯ã€jarãƒ•ã‚¡ã‚¤ãƒ«ã«ãƒ‡ã‚¸ã‚¿ãƒ«ç½²åã‚’ã™ã‚‹ã¨ãã«ä½¿ã†ãƒ„ãƒ¼ãƒ«ã€‚ policytool ã¯ã€Javaã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ãƒ»ãƒãƒªã‚·ãƒ¼ãƒ•ã‚¡ã‚¤ãƒ«ã‚’ä½œæˆã™ã‚‹ãŸã‚ã®GUIãƒ„ãƒ¼ãƒ«ã€‚ å½“é¢ã“ã„ã¤ã¯ä½¿ã†ã¤ã‚‚ã‚Šã¯ç„¡ã„ã®ã ã€‚ keytoolã§ã¯ã€è¨¼æ˜Žæ›¸ã‚’æ ¼ç´ã™ã‚‹å ´æ‰€ã¨ã—ã¦ã‚ãƒ¼ã‚¹ãƒˆã‚¢ã¨å‘¼ã°ã‚Œã‚‹ãƒ•ã‚¡ã‚¤ãƒ«ã‚’ä½¿ç”¨ã™ã‚‹ã€‚ keytoolã®ä¸»ãªæ©Ÿèƒ½ã¯ã€ ã‚ãƒ¼ã‚¹ãƒˆã‚¢ã‚’ä½œæˆã™ã‚‹ã€‚ ãƒ‡ã‚¸ã‚¿ãƒ«è¨¼æ˜Žæ›¸ã‚’ã‚ãƒ¼ã‚¹ãƒˆã‚¢å†…ã«ä½œæˆã™ã‚‹ã€‚ ã‚ãƒ¼ã‚¹ãƒˆã‚¢å†…ã®ãƒ‡ã‚¸ã‚¿ãƒ«è¨¼æ˜Ž
shin-uemon 2006/10/03
é›»åç½²å

ãƒ‡ã‚¸ã‚¿ãƒ«ç½²å

JAVA

keytool

ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£
ãƒªãƒ³ã‚¯
XMLãƒ‡ã‚¸ã‚¿ãƒ«ç½²åã¨XMLæš—å·
ã€Œç¬¬1å›žã€€Webã‚µãƒ¼ãƒ“ã‚¹ã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£æ¦‚è¦ã€ã¯ã€Webã‚µãƒ¼ãƒ“ã‚¹ãƒ»ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã®ãƒ•ãƒ¬ãƒ¼ãƒ ãƒ¯ãƒ¼ã‚¯ã®æ¦‚è¦ã‚’è¿°ã¹ãŸã€‚ä»Šå›žã¯Webã‚µãƒ¼ãƒ“ã‚¹ãƒ»ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã®æœ€ã‚‚åŸºæœ¬ã¨ãªã‚‹XMLãƒ‡ã‚¸ã‚¿ãƒ«ç½²åã¨XMLæš—å·ã«ã¤ã„ã¦è¿°ã¹ã‚‹ã€‚XMLãƒ‡ã‚¸ã‚¿ãƒ«ç½²åã¨XMLæš—å·ã¯å¾“æ¥ã®ASN.1ã§å®šç¾©ã•ã‚ŒãŸCMSç½²åãƒ•ã‚©ãƒ¼ãƒžãƒƒãƒˆã‚„CMSæš—å·ãƒ•ã‚©ãƒ¼ãƒžãƒƒãƒˆï¼Š1ã«æ¯”ã¹ã¦XMLæ–‡æ›¸ã¨ã®è¦ªå’Œæ€§ãŒé«˜ãã€æŸ”è»Ÿãªç½²åã‚„æš—å·åŒ–ãŒå¯èƒ½ã¨ãªã‚‹ã€‚ ï¼Š1 CMS æš—å·ãƒ¡ãƒƒã‚»ãƒ¼ã‚¸æ§‹æ–‡ï¼ˆCryptographic Message Syntaxï¼šRFC2630ï¼‰ã‚’å®šã‚ãŸæ¨™æº–ã§ASN.1ã§å®šç¾©ã•ã‚Œãƒ‡ã‚¸ã‚¿ãƒ«ç½²åã‚„æš—å·ãƒ¡ãƒƒã‚»ãƒ¼ã‚¸ã®æ§‹æ–‡ã‚’è¦å®šã—ã¦ã„ã‚‹ã€‚ XMLãƒ‡ã‚¸ã‚¿ãƒ«ç½²å â—XMLãƒ‡ã‚¸ã‚¿ãƒ«ç½²åã®ç‰¹å¾´ W3Cã¯XMLã«ãƒ‡ã‚¸ã‚¿ãƒ«ç½²åã‚’åŸ‹ã‚è¾¼ã‚€ãŸã‚ã®æ¨™æº–åŒ–ä½œæ¥ã‚’IETFã¨ã®ã‚¸ãƒ§ã‚¤ãƒ³ãƒˆã§è¡Œã„ã€XML Digital Signatureæ¨™æº–ã®RFC3075ï¼Š2ã‚’å®šã‚ãŸã€‚XMLãƒ‡ã‚¸ã‚¿
shin-uemon 2006/10/03
ãƒ‡ã‚¸ã‚¿ãƒ«ç½²å

é›»åç½²å

ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£
ãƒªãƒ³ã‚¯
bsport Dá»… chÆ¡i, nháºn tiá»n tháºt, trang web phá»• biáº¿n
shin-uemon 2006/10/03
XML Signature

ãƒ‡ã‚¸ã‚¿ãƒ«ç½²å

é›»åç½²å

ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£
ãƒªãƒ³ã‚¯
ã€Œè¨¼æ˜Žæ›¸ç½²åè¦æ±‚ã®ç”Ÿæˆã«ã¤ã„ã¦ã€ï¼ˆ1ï¼‰ Java Solution ï¼ ï¼ IT
ï¼ IT ä¼šè°å®¤ Indexãƒªãƒ³ã‚¯ Windows Server Insider Insider.NET System Insider XML & SOA Linux Square Master of IP Network Java Solution Security & Trust Database Expert RFIDï¼‹IC ãƒªãƒƒãƒã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆ & å¸³ç¥¨ Server ï¼† Storage Coding Edge ï¼ ITã‚¯ãƒ©ãƒ– Cafe VBæ¥å‹™ã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³é–‹ç™ºç ”ç©¶ ï¼ IT SpecialPR
shin-uemon 2006/10/03
é›»åç½²å

ãƒ‡ã‚¸ã‚¿ãƒ«ç½²å

ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£
ãƒªãƒ³ã‚¯
XML Signature ã®å…¬é–‹ã«ã¤ã„ã¦ (W3C å‹§å‘Š)
IETF ã¨ã®å”åŠ›ä½œæ¥ã«åŸºã¥ãã€ ã‚»ã‚ãƒ¥ã‚¢ Web ã‚µãƒ¼ãƒ“ã‚¹ã®åŸºç›¤ã¨ãªã‚‹ XML ã«åŸºã¥ãé›»åç½²åã‚½ãƒªãƒ¥ãƒ¼ã‚·ãƒ§ãƒ³ æŽ¨è–¦çŠ¶ã‚‚ã”å‚ç…§ä¸‹ã•ã„ã€‚ http://www.w3.org/ -- 2002å¹´2æœˆ14æ—¥ -- World Wide Web Consortium (W3C) ã¯ XML-Signature Syntax and Processing (XML Signature; XML ç½²å) ã‚’ W3C å‹§å‘Šã¨ã—ã¦å…¬é–‹è‡´ã—ã¾ã—ãŸã€‚ ã“ã‚Œã¯ã€XML ã«åŸºã¥ãé›»åç½²åã®ãŸã‚ã®è¨€èªžã«ã¤ã„ã¦ã€ æ¥ç•Œã‚’ã¾ãŸãŒã‚‹åˆæ„ãŒå¾—ã‚‰ã‚ŒãŸã“ã¨ã‚’ç¤ºã—ã¦ã„ã¾ã™ã€‚W3C å‹§å‘Šã§ã‚ã‚‹ã¨ã„ã†ã“ã¨ã¯ã€ æœ¬ä»•æ§˜ãŒå®‰å®šã—ã¦ãŠã‚Šã€Web ã®ç›¸äº’é‹ç”¨æ€§ã®ç¢ºä¿ã«è²¢çŒ®ã—ã€ã¾ãŸ W3C ä¼šå“¡çµ„ç¹”ã«ã‚ˆã£ã¦æ¤œè¨ŽãŒãªã•ã‚Œã€ ãã®å¹…åºƒã„æŽ¡ç”¨ãŒæ”¯æŒã•ã‚ŒãŸã“ã¨ã‚’æ„å‘³ã—ã¾ã™ã€‚ W3C ã®ãƒ‡ã‚£ãƒ¬ã‚¯ã‚¿ãƒ¼ã§ã‚ã‚‹ Tim Berners-Lee ã¯æ¬¡ã®ã‚ˆã†ã«
shin-uemon 2006/10/03
XML Signature

é›»åç½²å

ãƒ‡ã‚¸ã‚¿ãƒ«ç½²å

ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£
ãƒªãƒ³ã‚¯
1