Processing

Reference Validation

1. locate object and apply Transforms to the specified resource based on each ObjectReference(s) in the SignedInfo element.
2. calculate digest over each transformed signed object(s)
3. compare value against DigestValue in SignedInfo for each reference (if any mismatch, validation fails).

Signature Validation

1. canonicalize the SignedInfo element based on the CanonicalizationMethod, if any, in SignedInfo.
2. obtain the validation keying info from KeyInfo or externally.
3. validate the SignatureValue based on the SignatureMethod in the SignedInfo