idnits 2.17.1 draft-smirnov-xmldsig-05.txt: Checking boilerplate required by RFC 5378 and the IETF Trust (see https://trustee.ietf.org/license-info): ---------------------------------------------------------------------------- No issues found here. Checking nits according to https://www.ietf.org/id-info/1id-guidelines.txt: ---------------------------------------------------------------------------- No issues found here. Checking nits according to https://www.ietf.org/id-info/checklist : ---------------------------------------------------------------------------- ** The document seems to lack a Security Considerations section. ** There are 30 instances of too long lines in the document, the longest one being 15 characters in excess of 72. Miscellaneous warnings: ---------------------------------------------------------------------------- == The copyright year in the IETF Trust and authors Copyright Line does not match the current year -- The document date (5 May 2022) is 714 days in the past. Is this intentional? Checking references for intended status: Informational ---------------------------------------------------------------------------- == Unused Reference: 'RFC2104' is defined on line 1103, but no explicit reference was found in the text == Unused Reference: 'RFC5280' is defined on line 1138, but no explicit reference was found in the text Summary: 2 errors (**), 0 flaws (~~), 3 warnings (==), 1 comment (--). Run idnits with the --verbose option for more detailed information about the items above. -------------------------------------------------------------------------------- 2 Network Working Group P.V. Smirnov, Ed. 3 Internet-Draft M.V. Paramonova 4 Intended status: Informational M.V. Khomenko 5 Expires: 6 November 2022 A.O. Makarov 6 CryptoPro 7 5 May 2022 9 Using GOST Algorithms for XML Digital Signatures 10 draft-smirnov-xmldsig-05 12 Abstract 14 This document defines new algorithm identifiers for GOST 15 cryptographic algorithms and methods of including GOST-based digital 16 signature and hash-based message authentication code (HMAC) within 17 the XML document. All statements in this document are techically 18 equivalent to [R1323565.1.033-2020]. 20 Status of This Memo 22 This Internet-Draft is submitted in full conformance with the 23 provisions of BCP 78 and BCP 79. 25 Internet-Drafts are working documents of the Internet Engineering 26 Task Force (IETF). Note that other groups may also distribute 27 working documents as Internet-Drafts. The list of current Internet- 28 Drafts is at https://datatracker.ietf.org/drafts/current/. 30 Internet-Drafts are draft documents valid for a maximum of six months 31 and may be updated, replaced, or obsoleted by other documents at any 32 time. It is inappropriate to use Internet-Drafts as reference 33 material or to cite them other than as "work in progress." 35 This Internet-Draft will expire on 6 November 2022. 37 Copyright Notice 39 Copyright (c) 2022 IETF Trust and the persons identified as the 40 document authors. All rights reserved. 42 This document is subject to BCP 78 and the IETF Trust's Legal 43 Provisions Relating to IETF Documents (https://trustee.ietf.org/ 44 license-info) in effect on the date of publication of this document. 45 Please review these documents carefully, as they describe your rights 46 and restrictions with respect to this document. Code Components 47 extracted from this document must include Revised BSD License text as 48 described in Section 4.e of the Trust Legal Provisions and are 49 provided without warranty as described in the Revised BSD License. 51 Table of Contents 53 1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . 3 54 1.1. Requirements language . . . . . . . . . . . . . . . . . . 4 55 2. XML Namespaces and Prefixes . . . . . . . . . . . . . . . . . 4 56 3. Using GOST Algorithms to Construct an XML Digital Signature 57 Elements . . . . . . . . . . . . . . . . . . . . . . . . 5 58 3.1. Hash Algorithm in DigestMethod Element . . . . . . . . . 5 59 3.1.1. GOST R 34.11-2012 Algorithm with 256-bit Hash Code in 60 DigestMethod Element . . . . . . . . . . . . . . . . 5 61 3.1.2. GOST R 34.11-2012 Algorithm with 512-bit Hash Code in 62 DigestMethod Element . . . . . . . . . . . . . . . . 6 63 3.1.3. GOST R 34.11-94 Algorithm in DigestMethod Element . . 6 64 3.2. Signature Algorithm in SignatureMethod Element . . . . . 7 65 3.2.1. GOST R 34.10-2012 Algorithm with 256-bit Key in 66 SignatureMethod Element . . . . . . . . . . . . . . . 7 67 3.2.2. GOST R 34.10-2012 Algorithm with 512-bit Key in 68 SignatureMethod Element . . . . . . . . . . . . . . . 8 69 3.2.3. GOST R 34.10-2001 Algorithm in SignatureMethod 70 Element . . . . . . . . . . . . . . . . . . . . . . . 8 71 3.3. HMAC Algorithm in SignatureMethod Element . . . . . . . . 9 72 3.3.1. GOST R 34.11-2012 algorithm with 256-bit key in 73 SignatureMethod Element . . . . . . . . . . . . . . . 9 74 3.3.2. GOST R 34.11-2012 algorithm with 512-bit key in 75 SignatureMethod Element . . . . . . . . . . . . . . . 9 76 4. Including GOST-based Key Material in XML Digital Signature . 10 77 4.1. Public Key in DEREncodedKeyValue Element . . . . . . . . 10 78 4.2. Public Key in KeyValue Element . . . . . . . . . . . . . 10 79 4.2.1. GOST R 34.10-2012 256-bit Public Key in 80 GOSTR34102012-256-KeyValue Element . . . . . . . . . 12 81 4.2.2. GOST R 34.10-2012 512-bit Public Key in 82 GOSTR34102012-512-KeyValue Element . . . . . . . . . 13 83 4.2.3. GOST R 34.10-2001 Public Key in GOSTR34102001KeyValue 84 Element . . . . . . . . . . . . . . . . . . . . . . . 14 85 4.3. Public Key Reference in RetrievalMethod Element . . . . . 14 86 5. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 15 87 5.1. XML Sub-namespace Registration for 88 urn:ietf:params:xml:ns:cpxmlsec . . . . . . . . . . . . 15 90 5.2. XML Sub-Namespace Registration for 91 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34112012-256 92 . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15 93 5.3. XML Sub-Namespace Registration for 94 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34112012-512 95 . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16 96 5.4. XML Sub-Namespace Registration for 97 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr3411 . . 17 98 5.5. XML Sub-Namespace Registration for urn:ietf:params:xml:ns:c 99 pxmlsec:algorithms:gostr34102012-gostr34112012-256 . . . 18 100 5.6. XML Sub-Namespace Registration for urn:ietf:params:xml:ns:c 101 pxmlsec:algorithms:gostr34102012-gostr34112012-512 . . . 19 102 5.7. XML Sub-Namespace Registration for urn:ietf:params:xml:ns:c 103 pxmlsec:algorithms:gostr34102001-gostr3411 . . . . . . . 20 104 5.8. XML Sub-Namespace Registration for urn:ietf:params:xml:ns:c 105 pxmlsec:algorithms:hmac-gostr34112012-256 . . . . . . . 21 106 5.9. XML Sub-Namespace Registration for urn:ietf:params:xml:ns:c 107 pxmlsec:algorithms:hmac-gostr34112012-512 . . . . . . . 22 108 5.10. XML Sub-Namespace Registration for urn:ietf:params:xml:ns:c 109 pxmlsec:types:gostr34102012-256-keyvalue . . . . . . . . 23 110 5.11. XML Sub-Namespace Registration for urn:ietf:params:xml:ns:c 111 pxmlsec:types:gostr34102012-512-keyvalue . . . . . . . . 24 112 5.12. XML Sub-Namespace Registration for 113 urn:ietf:params:xml:ns:cpxmlsec:types:gostr34102001-keyvalue 114 . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25 115 5.13. XML Schema Registration . . . . . . . . . . . . . . . . . 26 116 6. References . . . . . . . . . . . . . . . . . . . . . . . . . 26 117 6.1. Normative References . . . . . . . . . . . . . . . . . . 26 118 6.2. Informative References . . . . . . . . . . . . . . . . . 28 119 Appendix A. CPXMLSEC XML Schema . . . . . . . . . . . . . . . . 29 120 Appendix B. Test Examples . . . . . . . . . . . . . . . . . . . 31 121 B.1. Signed XML document with GOST R 34.10-2012 algorithm and 122 256-bit hash code in DigestMethod element . . . . . . . . 31 123 B.2. Signed XML document with GOST R 34.10-2012 algorithm and 124 512-bit hash code in DigestMethod element . . . . . . . . 33 125 B.3. Signed XML document with GOST R 34.10-2001 algorithm in 126 SignatureMethod element . . . . . . . . . . . . . . . . . 36 127 B.4. Signed XML document with X.509 certificate in KeyInfo 128 element . . . . . . . . . . . . . . . . . . . . . . . . . 38 129 B.5. Signed XML document with GOST R 34.10-2012 algorithm and 130 256-bit public key in DEREncodedKeyValue . . . . . . . . 41 131 Appendix C. Acknowledgments . . . . . . . . . . . . . . . . . . 44 132 Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . 44 134 1. Introduction 136 This document specifies identifiers (see Section 3) for the following 137 Russian digital signature and hash algorithms (GOST algorithms): 139 * GOST 34.11-2012 [GOST3411-2012] hash algorithm (the English 140 version can be found in [RFC6986]), 142 * GOST 34.10-2012 [GOST3410-2012] digital signature algorithm (the 143 English version can be found in [RFC7091]). 145 This document specifies identifiers (see Section 3.3) for GOST-based 146 HMAC transformations defined in the R 50.1.113-2016 [R501113-2016] 147 (the English version can be found in [RFC7836]). 149 These identifiers are meant to use in XML Digital Signature Syntax 150 (see [XMLDSIG]). 152 In addition, new methods of carrying GOST-based key material within 153 XML documents are defined (see Section 4). 155 Also included are namespace identifiers, prefixes and XML schema 156 definition required to make specification complete (see Section 2). 158 1.1. Requirements language 160 The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", 161 "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this 162 document are to be interpreted as described in [RFC2119]. 164 2. XML Namespaces and Prefixes 166 This document uses XML elements from four different XML schemas (see 167 Table 1). Every XML schema is assigned to one XML namespace. The 168 following XML namespace identifier MUST be used as targetNamespace in 169 the XML schema preamble: 171 urn:ietf:params:xml:ns:cpxmlsec 173 The other XML namespaces are external. Their identifiers are 174 specified in XML schema preamble in corresponding attributes. 176 Table 1 lists full set of XML namespaces used in this document, 177 identifiers and assigned prefixes. Table 1 also defines 178 abbreviations for corresponding XML schemas. 180 +-----------------+------------------------------------+----------+---------------+ 181 | XML schema name | XML namespace identifier | Prefix | Reference | 182 +-----------------+------------------------------------+----------+---------------+ 183 | DS schema | http://www.w3.org/2000/09/xmldsig# | ds | [XMLDSIG] | 184 +-----------------+------------------------------------+----------+---------------+ 185 | DSIG11 schema | http://www.w3.org/2009/xmldsig11# | dsig11 | [XMLDSIG] | 186 +-----------------+------------------------------------+----------+---------------+ 187 | XS schema | http://www.w3.org/2001/XMLSchema | xs | [XMLSCHEMA-1]| 188 | | | | [XMLSCHEMA-2]| 189 +-----------------+------------------------------------+----------+---------------+ 190 | CPXMLSEC schema | urn:ietf:params:xml:ns:cpxmlsec | cpxmlsec | This document | 191 +-----------------+------------------------------------+----------+---------------+ 192 Table 1 194 Any element or attribute whose name starts with the prefix from the 195 Table 1 is considered to belong to the corresponding XML schema. 196 This document uses prefixes to prevent possible collisions with 197 elements of same names from different namespaces. Chosen prefixes 198 have no special meaning and MAY be replaced by others. 200 The CPXMLSEC schema extends DS schema to support GOST algorithms. 201 The CPXMLSEC schema uses XS schema elements (see [XMLSCHEMA-1] and 202 [XMLSCHEMA-2]). The DS schema and DSIG11 schema definitions are 203 described in accordance with [XMLDSIG]. 205 The subsequent CPXMLSEC schema preamble is to be used with XML Schema 206 definitions given in the remaining sections of this document. 208 216 3. Using GOST Algorithms to Construct an XML Digital Signature Elements 218 3.1. Hash Algorithm in DigestMethod Element 220 3.1.1. GOST R 34.11-2012 Algorithm with 256-bit Hash Code in 221 DigestMethod Element 223 For GOST R 34.11-2012 algorithm with 256-bit hash code the following 224 identifier MUST be used: 226 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34112012-256 228 The following sample includes GOST R 34.11-2012 algorithm with 229 256-bit hash code in ds:DigestMethod element: 231 234 The hash code MUST be represented in little-endian and base64-encoded 235 [RFC4648], then it is included in the ds:DigestValue element (see 236 Section 4.4.3.6 of [XMLDSIG]). 238 3.1.2. GOST R 34.11-2012 Algorithm with 512-bit Hash Code in 239 DigestMethod Element 241 For GOST R 34.11-2012 algorithm with 512-bit hash code the following 242 identifier MUST be used: 244 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34112012-512 246 The following sample includes GOST R 34.11-2012 algorithm with 247 512-bit hash code in the ds:DigestMethod element: 249 252 The hash code MUST be represented in little-endian and base64-encoded 253 [RFC4648], then it is included in the ds:DigestValue element (see 254 Section 4.4.3.6 of [XMLDSIG]). 256 3.1.3. GOST R 34.11-94 Algorithm in DigestMethod Element 258 The following identifier MUST be used for GOST R 34.11-94 algorithm 259 to provide backward compatibility: 261 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr3411 263 The ds:DigestMethod element MAY include a descendant element named 264 cpxmlsec:NamedParameters to specify hash algorithm parameters. 266 If present, hash algorithm parameters MUST be included in the "URI" 267 attribute of the cpxmlsec:NamedParameters element. Parameters are 268 indicated by OIDs and MUST be formatted in accordance with [RFC3061]. 269 OIDs defined in section 8.2 of [RFC4357] MAY be used. 271 If the cpxmlsec:NamedParameters element is not included, id- 272 GostR3411-94-CryptoProParamSet (see [RFC4357]) MUST be presumed. 274 The cpxmlsec:NamedParameters element is described by the following 275 XML schema definition: 277 280 The following sample includes GOST R 34.11-94 algorithm in the 281 ds:DigestMethod element: 283 285 286 287 289 The hash code MUST be represented in little-endian and base64-encoded 290 [RFC4648], then it is included in the ds:DigestValue element (see 291 Section 4.4.3.6 of [XMLDSIG]). 293 3.2. Signature Algorithm in SignatureMethod Element 295 3.2.1. GOST R 34.10-2012 Algorithm with 256-bit Key in SignatureMethod 296 Element 298 For GOST R 34.10-2012 algorithm with 256-bit private key the 299 following identifier MUST be used (without line break in the 300 identifier): 302 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34102012-gostr34112012- 303 256 305 The following sample includes GOST R 34.10-2012 algorithm with 306 256-bit private key in the ds:SignatureMethod element (without line 307 break in the attribute value): 309 313 Digital signature value MUST be represented in accordance with 314 [R1323565.1.023-2018] and base64-encoded [RFC4648], then it is 315 included in the ds:SignatureValue element (see Section 4.3 of 316 [XMLDSIG]). 318 3.2.2. GOST R 34.10-2012 Algorithm with 512-bit Key in SignatureMethod 319 Element 321 For GOST R 34.10-2012 algorithm with 512-bit private key the 322 following identifier MUST be used (without line break in the 323 identifier): 325 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34102012-gostr34112012- 326 512 328 The following sample includes GOST R 34.10-2012 algorithm with 329 512-bit private key in the ds:SignatureMethod element (without line 330 break in the attribute value): 332 336 Digital signature value MUST be represented in accordance with 337 [R1323565.1.023-2018] and base64-encoded [RFC4648], then it is 338 included in ds:SignatureValue element (see Section 4.3 of [XMLDSIG]). 340 3.2.3. GOST R 34.10-2001 Algorithm in SignatureMethod Element 342 The following identifier MUST be used for GOST R 34.10-2001 algorithm 343 to provide backward compatibility: 345 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34102001-gostr3411 347 The following sample includes GOST R 34.10-2001 algorithm in the 348 ds:SignatureMethod element: 350 354 Digital signature value MUST be represented in accordance with 355 [R1323565.1.023-2018] and base64-encoded [RFC4648], then it is 356 included in the ds:SignatureValue element (see Section 4.3 of 357 [XMLDSIG]). 359 3.3. HMAC Algorithm in SignatureMethod Element 361 GOST R 34.11-2012 algorithm MAY be used in HMAC mechanism in 362 accordance with section 6.3.1 [XMLDSIG] and section 4.1.1 363 [R501113-2016]. 365 3.3.1. GOST R 34.11-2012 algorithm with 256-bit key in SignatureMethod 366 Element 368 For GOST R 34.11-2012 algorithm with 256-bit hash code the following 369 identifier MUST be used: 371 urn:ietf:params:xml:ns:cpxmlsec:algorithms:hmac-gostr34112012-256 373 The following sample includes GOST R 34.11-2012 algorithm with 374 256-bit hash code in the ds:SignatureMethod element: 376 380 The HMAC_GOSTR3411_2012_256 algorithm result (section 4.1.1 381 [R501113-2016]) MUST be represented in little-endian and 382 base64-encoded [RFC4648], then it is included in the 383 ds:SignatureValue element (see Section 4.3 of [XMLDSIG]). 385 3.3.2. GOST R 34.11-2012 algorithm with 512-bit key in SignatureMethod 386 Element 388 For GOST R 34.11-2012 algorithm with 512-bit hash code the following 389 identifier MUST be used: 391 urn:ietf:params:xml:ns:cpxmlsec:algorithms:hmac-gostr34112012-512 393 The following sample includes GOST R 34.11-2012 algorithm with 394 512-bit hash code in the ds:SignatureMethod element: 396 400 The HMAC_GOSTR3411_2012_512 algorithm result (section 4.1.2 401 [R501113-2016]) MUST be represented in little-endian and 402 base64-encoded [RFC4648], then it is included in the 403 ds:SignatureValue element (see Section 4.3 of [XMLDSIG]). 405 4. Including GOST-based Key Material in XML Digital Signature 407 The information about GOST-based key material or HMAC symmetric key 408 MAY be included in XML digital signature in any way in accordance 409 with [XMLDSIG]. In addition, this document defines new ways to 410 enclose public keys of GOST algorithms: in descendants of the 411 dsig11:DEREncodedKeyValue element (see Section 4.5.9 of [XMLDSIG]), 412 in the ds:KeyValue element (see Section 4.2) and using the "Type" 413 atrribute of the ds:RetrievalMethod element (see Section 4.3). 415 4.1. Public Key in DEREncodedKeyValue Element 417 The dsig11:DEREncodedKeyValue element is a descendant of the 418 ds:KeyInfo (see Section 4.5 of [XMLDSIG]) element. To include the 419 public key and its parameters into the dsig11:DEREncodedKeyValue 420 element, the SubjectPublicKeyInfo structure MUST be used. This 421 structure MUST be encoded in accordance with [R1323565.1.023-2018]. 422 Then this key material MUST be represented in accordance with 423 Section 4.5.9 of [XMLDSIG]. 425 4.2. Public Key in KeyValue Element 427 The ds:KeyValue element is a descendant of the ds:KeyInfo (see 428 Section 4.5 of [XMLDSIG]) element. This element contains the public 429 key and its parameters. 431 For GOST algorithms one of the following extra descendants MUST be 432 included in the ds:KeyValue element: 434 * cpxmlsec:GOSTR34102012-256-KeyValue element; 435 * cpxmlsec:GOSTR34102012-512-KeyValue element; 437 * cpxmlsec:GOSTR34102001KeyValue element. 439 The extended ds:KeyValue element is described by the following XML 440 schema definition: 442 444 445 446 447 448 451 454 455 456 458 Each of cpxmlsec:GOSTR34102012-256-KeyValue, 459 cpxmlsec:GOSTR34102012-512-KeyValue and 460 cpxmlsec:GOSTR34102001KeyValue elements have 461 cpxmlsec:GOSTKeyValueType type (see schema definition below) and MUST 462 contain the following descendants: 464 * cpxmlsec:NamedCurve element - contains an elliptic curve 465 identifier; 467 * cpxmlsec:PublicKey element - contains a public key. 469 Each of cpxmlsec:NamedCurve and cpxmlsec:PublicKey elements belong to 470 cpxmlsec namespace. The cpxmlsec:NamedCurve element has 471 dsig11:NamedCurveType type. The cpxmlsec:PublicKey element has 472 dsig11:ECPointType type. Both types belong to DSIG11 schema 473 [XMLDSIG]. 475 Each of cpxmlsec:GOSTR34102012-256-KeyValue, 476 cpxmlsec:GOSTR34102012-512-KeyValue and 477 cpxmlsec:GOSTR34102001KeyValue elements are described by the 478 following XML schema definition: 480 483 486 489 490 491 493 495 496 498 Each of cpxmlsec:GOSTR34102012-256-KeyValue, 499 cpxmlsec:GOSTR34102012-512-KeyValue and 500 cpxmlsec:GOSTR34102001KeyValue elements MUST be represented in 501 accordance with Section 4.2.1-Section 4.2.3. 503 4.2.1. GOST R 34.10-2012 256-bit Public Key in 504 GOSTR34102012-256-KeyValue Element 506 The elliptic curve identifier (public key parameters) MUST be 507 included in the "URI" attribute of the cpxmlsec:NamedCurve element 508 (see Section 4.2). In case of public key parameters described by 509 OIDs they SHOULD be represented in accordance with [RFC3061]. OID 510 identifiers for GOST algorithms are defined in [R1323565.1.023-2018]. 512 The public key MUST be included in the 513 cpxmlsec:GOSTR34102012-256-KeyValue element. It MUST be represented 514 in the same way as subjectPublicKey field of SubjectPublicKeyInfo 515 structure [R1323565.1.023-2018] without enclosing in OCTET STRING and 516 DER encoding. This string MUST be base64-encoded [RFC4648] and 517 included in the cpxmlsec:GOSTR34102012-256-KeyValue element similar 518 to the ds:RSAKeyValue (see [XMLDSIG]). The XML schema of 519 cpxmlsec:GOSTR34102012-256-KeyValue and cpxmlsec:PublicKey elements 520 is defined in Section 4.2. 522 The following sample includes key material in the 523 cpxmlsec:GOSTR34102012-256-KeyValue element: 525 526 527 528 529 530 531 533 4.2.2. GOST R 34.10-2012 512-bit Public Key in 534 GOSTR34102012-512-KeyValue Element 536 The elliptic curve identifier (public key parameters) MUST be 537 included in the "URI" attribute of the cpxmlsec:NamedCurve element 538 (see Section 4.2). In case of public key parameters described by 539 OIDs they SHOULD be represented in accordance with [RFC3061]. OID 540 identifiers for GOST algorithms are defined in [R1323565.1.023-2018]. 542 The public key MUST be included in 543 cpxmlsec:GOSTR34102012-512-KeyValue element. It MUST be represented 544 in the same way as subjectPublicKey field of SubjectPublicKeyInfo 545 structure [R1323565.1.023-2018] without enclosing in OCTET STRING and 546 DER encoding. This string MUST be base64-encoded [RFC4648] and 547 included in the cpxmlsec:GOSTR34102012-512-KeyValue element similar 548 to the ds:RSAKeyValue (see [XMLDSIG]). The XML schema of 549 cpxmlsec:GOSTR34102012-512-KeyValue and cpxmlsec:PublicKey elements 550 is defined in Section 4.2. 552 The following sample includes key material in the 553 cpxmlsec:GOSTR34102012-512-KeyValue element: 555 556 557 558 559 560 561 563 4.2.3. GOST R 34.10-2001 Public Key in GOSTR34102001KeyValue Element 565 The elliptic curve identifier (public key parameters) MUST be 566 included in the "URI" attribute of the cpxmlsec:NamedCurve element 567 (see Section 4.2). In case of public key parameters described by 568 OIDs they SHOULD be represented in accordance with [RFC3061]. OID 569 identifiers for GOST algorithms are defined in section 8.4 of 570 [RFC4357]. 572 The public key MUST be included in cpxmlsec:GOSTR34102001KeyValue 573 element. It MUST be represented in the same way as subjectPublicKey 574 field of SubjectPublicKeyInfo structure [R1323565.1.023-2018] without 575 enclosing in OCTET STRING and DER encoding. This string MUST be 576 base64-encoded [RFC4648] and included in the 577 cpxmlsec:GOSTR34102001KeyValue similar to the ds:RSAKeyValue (see 578 [XMLDSIG]). The XML schema of cpxmlsec:GOSTR34102001KeyValue and 579 cpxmlsec:PublicKey elements is defined in Section 4.2. 581 The following sample includes key material in the 582 cpxmlsec:GOSTR34102001KeyValue element: 584 585 586 587 588 589 590 592 4.3. Public Key Reference in RetrievalMethod Element 594 The GOST public key MAY be referenced in the ds:RetrievalMethod 595 element. In this case the public key reference MUST be included in 596 the "URI" attribute. If the "Type" attribute is present one of the 597 following identifiers MUST be used. 599 For GOST R 34.10-2012 algorithm with 256-bit private key: 601 urn:ietf:params:xml:ns:cpxmlsec:types:gostr34102012-256-keyvalue 603 For GOST R 34.10-2012 algorithm with 512-bit private key: 605 urn:ietf:params:xml:ns:cpxmlsec:types:gostr34102012-512-keyvalue 607 For GOST R 34.10-2001 algorithm: 609 urn:ietf:params:xml:ns:cpxmlsec:types:gostr34102001-keyvalue 611 5. IANA Considerations 613 5.1. XML Sub-namespace Registration for urn:ietf:params:xml:ns:cpxmlsec 615 This section registers a new XML sub-namespace, 616 "urn:ietf:params:xml:ns:cpxmlsec" (see Section 2) per the guidelines 617 in [RFC3688]: 619 URI: urn:ietf:params:xml:ns:cpxmlsec 621 Registrant Contact: Pavel Smirnov (spv@cryptopro.ru), Maria 622 Paramonova (mparamonova@cryptopro.ru). 624 XML: None. Namespace URIs do not represent an XML specification. 626 5.2. XML Sub-Namespace Registration for 627 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34112012-256 629 This section registers a new XML sub-namespace identifier, 630 "urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34112012-256" (see 631 Section 3.1.1) per the guidelines in [RFC3688]: 633 URI: urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34112012-256 635 Registrant Contact: Pavel Smirnov (spv@cryptopro.ru), Maria 636 Paramonova (mparamonova@cryptopro.ru). 638 XML: 640 641 643 644 645 647 648 GOST R 34.11-2012 algorithm with 256-bit hash code in 649 DigestMethod element 650 651 652 653

654 Namespace identifier for GOST R 34.11-2012 algorithm with 655 256-bit hash code in DigestMethod element 656

657

658 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34112012-256 659

660

661 See Section 4.1.1 in 662 663 draft-smirnov-xmldsig-05. 664

665 666 668 5.3. XML Sub-Namespace Registration for 669 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34112012-512 671 This section registers a new XML sub-namespace identifier, 672 "urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34112012-512" (see 673 Section 3.1.2) per the guidelines in [RFC3688]: 675 URI: urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34112012-512 677 Registrant Contact: Pavel Smirnov (spv@cryptopro.ru), Maria 678 Paramonova (mparamonova@cryptopro.ru). 680 XML: 682 683 685 686 687 689 690 GOST R 34.11-2012 algorithm with 512-bit hash code in 691 DigestMethod element 692 693 694 695

696 Namespace identifier for GOST R 34.11-2012 algorithm with 697 512-bit hash code in DigestMethod element 698

699

700 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34112012-512 701

702

703 See Section 4.1.2 in 704 705 draft-smirnov-xmldsig-05. 706

707 708 710 5.4. XML Sub-Namespace Registration for 711 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr3411 713 This section registers a new XML sub-namespace identifier, 714 "urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr3411" (see 715 Section 3.1.3) per the guidelines in [RFC3688]: 717 URI: urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr3411 719 Registrant Contact: Pavel Smirnov (spv@cryptopro.ru), Maria 720 Paramonova (mparamonova@cryptopro.ru). 722 XML: 724 725 727 728 729 731 732 GOST R 34.11-94 algorithm in DigestMethod element 733 734 735 736

737 Namespace identifier for GOST R 34.11-94 algorithm in 738 DigestMethod element 739

740

741 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr3411 742

743

744 See Section 4.1.3 in 745 746 draft-smirnov-xmldsig-05. 747

748 749 751 5.5. XML Sub-Namespace Registration for urn:ietf:params:xml:ns:cpxmlsec 752 :algorithms:gostr34102012-gostr34112012-256 754 This section registers a new XML sub-namespace identifier, "urn:ietf: 755 params:xml:ns:cpxmlsec:algorithms:gostr34102012-gostr34112012-256" 756 (see Section 3.2.1) per the guidelines in [RFC3688]: 758 URI: urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34102012-gostr34 759 112012-256 761 Registrant Contact: Pavel Smirnov (spv@cryptopro.ru), Maria 762 Paramonova (mparamonova@cryptopro.ru). 764 XML: 766 767 769 770 771 773 774 GOST R 34.10-2012 algorithm with 256-bit key in 775 SignatureMethod element 776 777 778 779

780 Namespace identifier for GOST R 34.10-2012 algorithm with 781 256-bit key in SignatureMethod element 782

783

784 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34102012-gostr34112012-256 785

786

787 See Section 4.2.1 in 788 789 draft-smirnov-xmldsig-05. 790

791 792 794 5.6. XML Sub-Namespace Registration for urn:ietf:params:xml:ns:cpxmlsec 795 :algorithms:gostr34102012-gostr34112012-512 797 This section registers a new XML sub-namespace identifier, "urn:ietf: 798 params:xml:ns:cpxmlsec:algorithms:gostr34102012-gostr34112012-512" 799 (see Section 3.2.2) per the guidelines in [RFC3688]: 801 URI: urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34102012-gostr34 802 112012-512 804 Registrant Contact: Pavel Smirnov (spv@cryptopro.ru), Maria 805 Paramonova (mparamonova@cryptopro.ru). 807 XML: 809 810 812 813 814 816 817 GOST R 34.10-2012 algorithm with 512-bit key in 818 SignatureMethod element 819 820 821 822

823 Namespace identifier for GOST R 34.10-2012 algorithm with 824 512-bit key in SignatureMethod element 825

826

827 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34102012-gostr34112012-512 828

829

830 See Section 4.2.2 in 831 832 draft-smirnov-xmldsig-05. 833

834 835 837 5.7. XML Sub-Namespace Registration for 838 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34102001-gostr3411 840 This section registers a new XML sub-namespace identifier, 841 "urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34102001-gostr3411" 842 (see Section 3.2.3) per the guidelines in [RFC3688]: 844 URI: 845 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34102001-gostr3411 847 Registrant Contact: Pavel Smirnov (spv@cryptopro.ru), Maria 848 Paramonova (mparamonova@cryptopro.ru). 850 XML: 852 853 855 856 857 859 860 GOST R 34.10-2001 algorithm in SignatureMethod element 861 862 863 864

865 Namespace identifier for GOST R 34.10-2001 algorithm in 866 SignatureMethod element 867

868

869 urn:ietf:params:xml:ns:cpxmlsec:algorithms:gostr34102001-gostr3411 870

871

872 See Section 4.2.3 in 873 874 draft-smirnov-xmldsig-05. 875

876 877 879 5.8. XML Sub-Namespace Registration for 880 urn:ietf:params:xml:ns:cpxmlsec:algorithms:hmac-gostr34112012-256 882 This section registers a new XML sub-namespace identifier, 883 "urn:ietf:params:xml:ns:cpxmlsec:algorithms:hmac-gostr34112012-256" 884 (see Section 3.3.1) per the guidelines in [RFC3688]: 886 URI: urn:ietf:params:xml:ns:cpxmlsec:algorithms:hmac- 887 gostr34112012-256 889 Registrant Contact: Pavel Smirnov (spv@cryptopro.ru), Maria 890 Paramonova (mparamonova@cryptopro.ru). 892 XML: 894 895 897 898 899 901 902 GOST R 34.11-2012 algorithm with 256-bit key in 903 SignatureMethod element 904 905 906 907

908 Namespace identifier for GOST R 34.11-2012 algorithm with 909 256-bit key in SignatureMethod element 910

911

912 urn:ietf:params:xml:ns:cpxmlsec:algorithms:hmac-gostr34112012-256 913

914

915 See Section 4.3.1 in 916 917 draft-smirnov-xmldsig-05. 918

919 920 922 5.9. XML Sub-Namespace Registration for 923 urn:ietf:params:xml:ns:cpxmlsec:algorithms:hmac-gostr34112012-512 925 This section registers a new XML sub-namespace identifier, 926 "urn:ietf:params:xml:ns:cpxmlsec:algorithms:hmac-gostr34112012-512" 927 (see Section 3.3.2) per the guidelines in [RFC3688]: 929 URI: urn:ietf:params:xml:ns:cpxmlsec:algorithms:hmac- 930 gostr34112012-512 932 Registrant Contact: Pavel Smirnov (spv@cryptopro.ru), Maria 933 Paramonova (mparamonova@cryptopro.ru). 935 XML: 937 938 940 941 942 944 945 GOST R 34.11-2012 algorithm with 512-bit key in 946 SignatureMethod element 947 948 949 950

951 Namespace identifier for GOST R 34.11-2012 algorithm with 952 512-bit key in SignatureMethod element 953

954

955 urn:ietf:params:xml:ns:cpxmlsec:algorithms:hmac-gostr34112012-512 956

957

958 See Section 4.3.2 in 959 960 draft-smirnov-xmldsig-05. 961

962 963 965 5.10. XML Sub-Namespace Registration for 966 urn:ietf:params:xml:ns:cpxmlsec:types:gostr34102012-256-keyvalue 968 This section registers a new XML sub-namespace identifier, 969 "urn:ietf:params:xml:ns:cpxmlsec:types:gostr34102012-256-keyvalue" 970 (see Section 4.3) per the guidelines in [RFC3688]: 972 URI: urn:ietf:params:xml:ns:cpxmlsec:types:gostr34102012-256-keyvalue 974 Registrant Contact: Pavel Smirnov (spv@cryptopro.ru), Maria 975 Paramonova (mparamonova@cryptopro.ru). 977 XML: 979 980 982 983 984 986 987 GOST R 34.10-2012 256-bit public key at external location 988 989 990 991

992 Namespace identifier for GOST R 34.10-2012 256-bit 993 public key at external location 994

995

996 urn:ietf:params:xml:ns:cpxmlsec:types:gostr34102012-256-keyvalue 997

998

999 See Section 5.3 in 1000 1001 draft-smirnov-xmldsig-05. 1002

1003 1004 1006 5.11. XML Sub-Namespace Registration for 1007 urn:ietf:params:xml:ns:cpxmlsec:types:gostr34102012-512-keyvalue 1009 This section registers a new XML sub-namespace identifier, 1010 "urn:ietf:params:xml:ns:cpxmlsec:types:gostr34102012-512-keyvalue" 1011 (see Section 4.3) per the guidelines in [RFC3688]: 1013 URI: urn:ietf:params:xml:ns:cpxmlsec:types:gostr34102012-512-keyvalue 1015 Registrant Contact: Pavel Smirnov (spv@cryptopro.ru), Maria 1016 Paramonova (mparamonova@cryptopro.ru). 1018 XML: 1020 1021 1023 1024 1025 1027 1028 GOST R 34.10-2012 512-bit public key at external location 1029 1030 1031 1032

1033 Namespace identifier for GOST R 34.10-2012 512-bit 1034 public key at external location 1035

1036

1037 urn:ietf:params:xml:ns:cpxmlsec:types:gostr34102012-512-keyvalue 1038

1039

1040 See Section 5.3 in 1041 1042 draft-smirnov-xmldsig-05. 1043

1044 1045 1047 5.12. XML Sub-Namespace Registration for 1048 urn:ietf:params:xml:ns:cpxmlsec:types:gostr34102001-keyvalue 1050 This section registers a new XML sub-namespace identifier, 1051 "urn:ietf:params:xml:ns:cpxmlsec:types:gostr34102001-keyvalue" (see 1052 Section 4.3) per the guidelines in [RFC3688]: 1054 URI: urn:ietf:params:xml:ns:cpxmlsec:types:gostr34102001-keyvalue 1056 Registrant Contact: Pavel Smirnov (spv@cryptopro.ru), Maria 1057 Paramonova (mparamonova@cryptopro.ru). 1059 XML: 1061 1062 1064 1065 1066 1068 1069 GOST R 34.10-2001 public key at external location 1070 1071 1072 1073

1074 Namespace identifier for GOST R 34.10-2001 public 1075 key at external location 1076

1077

1078 urn:ietf:params:xml:ns:cpxmlsec:types:gostr34102001-keyvalue 1079

1080

1081 See Section 5.3 in 1082 1083 draft-smirnov-xmldsig-05. 1084

1085 1086 1088 5.13. XML Schema Registration 1090 This section registers an XML schema per the guidelines in [RFC3688]: 1092 URI: urn:ietf:params:xml:schema:cpxmlsec 1094 Registrant Contact: Pavel Smirnov (spv@cryptopro.ru), Maria 1095 Paramonova (mparamonova@cryptopro.ru). 1097 XML: The XML schema can be found in Appendix A. 1099 6. References 1101 6.1. Normative References 1103 [RFC2104] Krawczyk, H., Bellare, M., and R. Canetti, "HMAC: Keyed- 1104 Hashing for Message Authentication", RFC 2104, 1105 DOI 10.17487/RFC2104, February 1997, 1106 . 1108 [RFC2119] Bradner, S., "Key words for use in RFCs to Indicate 1109 Requirement Levels", BCP 14, RFC 2119, 1110 DOI 10.17487/RFC2119, March 1997, 1111 . 1113 [RFC3061] Mealling, M., "A URN Namespace of Object Identifiers", 1114 RFC 3061, DOI 10.17487/RFC3061, February 2001, 1115 . 1117 [RFC3688] Mealling, M., "The IETF XML Registry", BCP 81, RFC 3688, 1118 DOI 10.17487/RFC3688, January 2004, 1119 . 1121 [RFC4357] Popov, V., Kurepkin, I., and S. Leontiev, "Additional 1122 Cryptographic Algorithms for Use with GOST 28147-89, GOST 1123 R 34.10-94, GOST R 34.10-2001, and GOST R 34.11-94 1124 Algorithms", RFC 4357, DOI 10.17487/RFC4357, January 2006, 1125 . 1127 [RFC4491] Leontiev, S., Ed. and D. Shefanovski, Ed., "Using the GOST 1128 R 34.10-94, GOST R 34.10-2001, and GOST R 34.11-94 1129 Algorithms with the Internet X.509 Public Key 1130 Infrastructure Certificate and CRL Profile", RFC 4491, 1131 DOI 10.17487/RFC4491, May 2006, 1132 . 1134 [RFC4648] Josefsson, S., "The Base16, Base32, and Base64 Data 1135 Encodings", RFC 4648, DOI 10.17487/RFC4648, October 2006, 1136 . 1138 [RFC5280] Cooper, D., Santesson, S., Farrell, S., Boeyen, S., 1139 Housley, R., and W. Polk, "Internet X.509 Public Key 1140 Infrastructure Certificate and Certificate Revocation List 1141 (CRL) Profile", RFC 5280, DOI 10.17487/RFC5280, May 2008, 1142 . 1144 [RFC6986] Dolmatov, V., Ed. and A. Degtyarev, "GOST R 34.11-2012: 1145 Hash Function", RFC 6986, DOI 10.17487/RFC6986, August 1146 2013, . 1148 [RFC7091] Dolmatov, V., Ed. and A. Degtyarev, "GOST R 34.10-2012: 1149 Digital Signature Algorithm", RFC 7091, 1150 DOI 10.17487/RFC7091, December 2013, 1151 . 1153 [RFC7836] Smyshlyaev, S., Ed., Alekseev, E., Oshkin, I., Popov, V., 1154 Leontiev, S., Podobaev, V., and D. Belyavsky, "Guidelines 1155 on the Cryptographic Algorithms to Accompany the Usage of 1156 Standards GOST R 34.10-2012 and GOST R 34.11-2012", 1157 RFC 7836, DOI 10.17487/RFC7836, March 2016, 1158 . 1160 6.2. Informative References 1162 [GOST3410-2012] 1163 Federal Agency on Technical Regulating and Metrology, 1164 "Information technology. Cryptographic data security. 1165 Signature and verification processes of [electronic] 1166 digital signature", GOST R Version 1.1, 2012. 1168 [GOST3411-2012] 1169 Federal Agency on Technical Regulating and Metrology, 1170 "Information technology. Cryptographic Data Security. 1171 Hashing function", GOST R 34.11-2012, 2012. 1173 [R1323565.1.023-2018] 1174 Federal Agency on Technical Regulating and Metrology, 1175 "Information technology. Cryptographic information 1176 security. Usage of GOST R 34.10-2012 and GOST R 34.11-2012 1177 algorithms in certificate, CRL and PKCS#10 certificate 1178 request in X.509 public key infrastructure", 1179 R 1323565.1.023-2018, 2019. 1181 [R1323565.1.033-2020] 1182 Technical Committee 26 "Cryptography and Security 1183 Mechanisms", "Using Russian algorithms of digital 1184 signature with XML-based protocols and messages", TC 26 1185 Recommendation , 2020, . 1192 [R501113-2016] 1193 Federal Agency on Technical Regulating and Metrology, 1194 "Information technology. Cryptographic Data Security. 1195 Guidelines on the Cryptographic Algorithms, Accompanying 1196 the Usage of Standards GOST R 34.10-2012 and GOST R 1197 34.11-2012", R 50.1.113-2016, 2016. 1199 [XMLDSIG] The World Wide Web Consortium (W3C), "XML Signature Syntax 1200 and Processing", W3C Recommendation Version 1.1, 2013, 1201 . 1203 [XMLSCHEMA-1] 1204 The World Wide Web Consortium (W3C), "XML Schema Part 1: 1205 Structures Second Edition", W3C Recommendation , 2004, 1206 . 1208 [XMLSCHEMA-2] 1209 The World Wide Web Consortium (W3C), "XML Schema Part 2: 1210 Datatypes Second Edition", W3C Recommendation , 2004, 1211 . 1213 Appendix A. CPXMLSEC XML Schema 1214 1215 1217 1220 ]> 1222 1230 1232 1234 1237 1238 1239 1241 1242 1243 1245 1246 1247 1249 1251 1253 1256 1258 Appendix B. Test Examples 1260 Note: Line breaks in the coordinates, identifiers, XML elements or in 1261 the attribute values MUST be ignored. 1263 B.1. Signed XML document with GOST R 34.10-2012 algorithm and 256-bit 1264 hash code in DigestMethod element 1266 The following sample was constructed using the X.509 certificate from 1267 Appendix A of [R1323565.1.023-2018]. 1269 X-coordinate of public key: 1271 0x971566CEDA436EE7678F7E07E84EBB7217406C0B4747AA8FD2AB1453C3D0DFBA 1273 Y-coordinate of public key: 1275 0xAD58736965949F8E59830F8DE20FC6C0D177F6AB599874F1E2E24FF71F9CE643 1277 Corresponding private key (d): 1279 0xBFCF1D623E5CDD3032A7C6EABB4A923C46E43D640FFEAAF2C3ED39A8FA399924 1281 K value: 1283 0x5782C53F110C596F9155D35EBD25A06A89C50391850A8FEFE33B0E270318857C 1285 H-bar value: 1287 0x054D1DABB161D63424F8DABB2800708B00F78DA7582699E8F2F0A521C7CE8144 1289 Signed XML document: 1291 1292 1293 Data 1294 1295 1296 1299 1303 1304 1305 1309 1310 1314 1315 9QLsxPPo7LlX6IXqwzjcNDmbFuCCGivQ1s61hcPuITM= 1316 1317 1318 1319 1320 jcQJhWtWbTCV7bjFky5vGXXUFigc74FXRi79lZnFHK7pMjpeiN2H+3xyQ4O//n 1321 zs1Ln/oqwzvu9zpaH3Q0BPaw== 1322 1323 1324 1325 1327 1328 1329 ut/Qw1MUq9KPqkdHC2xAF3K7TugHfo9n525D2s5mFZdD5pwf90/i4v 1330 F0mFmr9nfRwMYP4o0Pg1mOn5RlaXNYrQ== 1331 1332 1333 1334 1335 1336 1337 Base64-encoded signed XML document: 1339 77u/ 1340 PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0idXRmLTgiPz48cm9vdD4NCiAgIDxE 1341 YXRhVG9TaWduIElkPSJUb1NpZ24iPkRhdGE8L0RhdGFUb1NpZ24+DQogICA8U2lnbmF0d 1342 XJl IHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwLzA5L3htbGRzaWcjIj4NCiAgI 1343 CAgIDxT aWduZWRJbmZvPg0KICAgICAgICAgPENhbm9uaWNhbGl6YXRpb25NZXRob2QgQ 1344 Wxnb3JpdGht PSJodHRwOi8vd3d3LnczLm9yZy9UUi8yMDAxL1JFQy14bWwtYzE0bi0yM 1345 DAxMDMxNSIgLz4N CiAgICAgICAgIDxTaWduYXR1cmVNZXRob2QgQWxnb3JpdGhtPSJ1c 1346 m46aWV0ZjpwYXJhbXM6 eG1sOm5zOmNweG1sc2VjOmFsZ29yaXRobXM6Z29zdHIzNDEwM 1347 jAxMi1nb3N0cjM0MTEyMDEy LTI1NiIgLz4NCiAgICAgICAgIDxSZWZlcmVuY2UgVVJJP 1348 SIjVG9TaWduIj4NCiAgICAgICAg ICAgIDxUcmFuc2Zvcm1zPg0KICAgICAgICAgICAgI 1349 CAgPFRyYW5zZm9ybSBBbGdvcml0aG09 Imh0dHA6Ly93d3cudzMub3JnL1RSLzIwMDEvU 1350 kVDLXhtbC1jMTRuLTIwMDEwMzE1IiAvPg0K ICAgICAgICAgICAgPC9UcmFuc2Zvcm1zP 1351 g0KICAgICAgICAgICAgPERpZ2VzdE1ldGhvZCBB bGdvcml0aG09InVybjppZXRmOnBhc 1352 mFtczp4bWw6bnM6Y3B4bWxzZWM6YWxnb3JpdGhtczpn b3N0cjM0MTEyMDEyLTI1NiIgL 1353 z4NCiAgICAgICAgICAgIDxEaWdlc3RWYWx1ZT45UUxzeFBQ bzdMbFg2SVhxd3pqY05Eb 1354 WJGdUNDR2l2UTFzNjFoY1B1SVRNPTwvRGlnZXN0VmFsdWU+DQog ICAgICAgICA8L1JlZ 1355 mVyZW5jZT4NCiAgICAgIDwvU2lnbmVkSW5mbz4NCiAgICAgIDxTaWdu YXR1cmVWYWx1Z 1356 T5qY1FKaFd0V2JUQ1Y3YmpGa3k1dkdYWFVGaWdjNzRGWFJpNzlsWm5GSEs3 cE1qcGVpT 1357 jJIKzN4eVE0Ty8vbnpzMUxuL29xd3p2dTl6cGFIM1EwQlBhdz09PC9TaWduYXR1 cmVWY 1358 Wx1ZT4NCiAgICAgIDxLZXlJbmZvPg0KICAgICAgICAgPEtleVZhbHVlPg0KICAgICAg I 1359 CAgICAgPEdPU1RSMzQxMDIwMTItMjU2LUtleVZhbHVlIHhtbG5zPSJ1cm46aWV0ZjpwYX 1360 Jh bXM6eG1sOm5zOmNweG1sc2VjIj4NCiAgICAgICAgICAgICAgIDxOYW1lZEN1cnZlIF 1361 VSST0i dXJuOm9pZDoxLjIuNjQzLjIuMi4zNi4wIiAvPg0KICAgICAgICAgICAgICAgPF 1362 B1YmxpY0tl eT51dC9RdzFNVXE5S1Bxa2RIQzJ4QUYzSzdUdWdIZm85bjUyNUQyczVtRl 1363 pkRDVwd2Y5MC9p NHZGMG1GbXI5bmZSd01ZUDRvMFBnMW1PbjVSbGFYTllyUT09PC9QdW 1364 JsaWNLZXk+DQogICAg ICAgICAgICA8L0dPU1RSMzQxMDIwMTItMjU2LUtleVZhbHVlPg 1365 0KICAgICAgICAgPC9LZXlW 1366 YWx1ZT4NCiAgICAgIDwvS2V5SW5mbz4NCiAgIDwvU2lnbmF0dXJlPg0KPC9yb290Pg== 1368 B.2. Signed XML document with GOST R 34.10-2012 algorithm and 512-bit 1369 hash code in DigestMethod element 1371 The following sample was constructed using the X.509 certificate from 1372 Appendix A of [R1323565.1.023-2018]. 1374 X-coordinate of public key: 1376 0x07134627CE7FC6770953ABA4714B38AF8DE764B8870A502C2F4CC2D05541459A18DA3B 1377 9D4EBC09BC06CB2EA1856A03747561CF04C34382111539230A550F1913 1379 Y-coordinate of public key: 1381 0x7E08A434CB2FA300F8974E3FF69A4BCDF36B6308E1D7A56144693A35E11CBD14D50291 1382 6E680E35FE1E6ABBA85BD4DAE7065308B16B1CCABFE3D91CE0655B0FFD 1384 Corresponding private key (d): 1386 0x3FC01CDCD4EC5F972EB482774C41E66DB7F380528DFE9E67992BA05AEE462435757530 1387 E641077CE587B976C8EEB48C48FD33FD175F0C7DE6A44E014E6BCB074B 1389 K value: 1391 0x72ABB44536656BF1618CE10BF7EADD40582304A51EE4E2A25A0A32CB0E773ABB23B7D8 1392 FDD8FA5EEE91B4AE452F2272C86E1E2221215D405F51B5D5015616E1F6 1394 H-bar value: 1396 0x33DEF8422879AA68482339BC65E5DCA9A5D77E80C5C0371DB13D3B88F4CCA8A89ED3CE 1397 85849231DD61B35E4B47A3722317663859A2BE088C1BB6EEC87410DAF2 1399 Signed XML document: 1401 1402 1403 Data 1404 1405 1406 1409 1413 1414 1415 1419 1420 1424 1425 wiOFD9D7zKHNlo58t/9tUtCJA5ZO9vmDhMlt3HIkyXZvQxIp5PE+txwsI 1426 AVfUIOULvGTFxAZlwuHTB+qD5s54g== 1427 1428 1429 1430 1431 dn+oWg6n3wJ20kBmO1GvURc4SuZ3h3nKXYWy4uHdmeS2nlTlNWFKca4fTBlc+fp 1432 nCS8IEVNFX25Ndh4UXJLLNl2/L0wtancFiA+xRYzFgzUGW+pWIfyfvBdsSspbwe 1433 ZyJUWajqN3lDRZDchycEApNlqDpTtes8BpNrXSh+Cpg+c= 1434 1435 1436 1437 1439 1440 1441 ExkPVQojORURgkPDBM9hdXQDaoWhLssGvAm8Tp072hiaRUFV0MJMLy 1442 xQCoe4ZOeNrzhLcaSrUwl3xn/OJ0YTB/0PW2XgHNnjv8oca7EIUwbn 1443 2tRbqLtqHv41DmhukQLVFL0c4TU6aURhpdfhCGNr881LmvY/Tpf4AK 1444 MvyzSkCH4= 1445 1446 1447 1448 1449 1450 1452 Base64-encoded signed XML document: 1454 77u/ 1455 PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0idXRmLTgiPz48cm9vdD4NCiAgIDxE 1456 YXRhVG9TaWduIElkPSJUb1NpZ24iPkRhdGE8L0RhdGFUb1NpZ24+DQogICA8U2lnbmF0d 1457 XJl IHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwLzA5L3htbGRzaWcjIj4NCiAgI 1458 CAgIDxT aWduZWRJbmZvPg0KICAgICAgICAgPENhbm9uaWNhbGl6YXRpb25NZXRob2QgQ 1459 Wxnb3JpdGht PSJodHRwOi8vd3d3LnczLm9yZy9UUi8yMDAxL1JFQy14bWwtYzE0bi0yM 1460 DAxMDMxNSIgLz4N CiAgICAgICAgIDxTaWduYXR1cmVNZXRob2QgQWxnb3JpdGhtPSJ1c 1461 m46aWV0ZjpwYXJhbXM6 eG1sOm5zOmNweG1sc2VjOmFsZ29yaXRobXM6Z29zdHIzNDEwM 1462 jAxMi1nb3N0cjM0MTEyMDEy LTUxMiIgLz4NCiAgICAgICAgIDxSZWZlcmVuY2UgVVJJP 1463 SIjVG9TaWduIj4NCiAgICAgICAg ICAgIDxUcmFuc2Zvcm1zPg0KICAgICAgICAgICAgI 1464 CAgPFRyYW5zZm9ybSBBbGdvcml0aG09 Imh0dHA6Ly93d3cudzMub3JnL1RSLzIwMDEvU 1465 kVDLXhtbC1jMTRuLTIwMDEwMzE1IiAvPg0K ICAgICAgICAgICAgPC9UcmFuc2Zvcm1zP 1466 g0KICAgICAgICAgICAgPERpZ2VzdE1ldGhvZCBB bGdvcml0aG09InVybjppZXRmOnBhc 1467 mFtczp4bWw6bnM6Y3B4bWxzZWM6YWxnb3JpdGhtczpn b3N0cjM0MTEyMDEyLTUxMiIgL 1468 z4NCiAgICAgICAgICAgIDxEaWdlc3RWYWx1ZT53aU9GRDlE N3pLSE5sbzU4dC85dFV0Q 1469 0pBNVpPOXZtRGhNbHQzSElreVhadlF4SXA1UEUrdHh3c0lBVmZV SU9VTHZHVEZ4QVpsd 1470 3VIVEIrcUQ1czU0Zz09PC9EaWdlc3RWYWx1ZT4NCiAgICAgICAgIDwv UmVmZXJlbmNlP 1471 g0KICAgICAgPC9TaWduZWRJbmZvPg0KICAgICAgPFNpZ25hdHVyZVZhbHVl PmRuK29XZ 1472 zZuM3dKMjBrQm1PMUd2VVJjNFN1WjNoM25LWFlXeTR1SGRtZVMybmxUbE5XRktj YTRmV 1473 EJsYytmcG5DUzhJRVZORlgyNU5kaDRVWEpMTE5sMi9MMHd0YW5jRmlBK3hSWXpGZ3pV R 1474 1crcFdJZnlmdkJkc1NzcGJ3ZVp5SlVXYWpxTjNsRFJaRGNoeWNFQXBObHFEcFR0ZXM4Qn 1475 BO clhTaCtDcGcrYz08L1NpZ25hdHVyZVZhbHVlPg0KICAgICAgPEtleUluZm8+DQogIC 1476 AgICAg ICA8S2V5VmFsdWU+DQogICAgICAgICAgICA8R09TVFIzNDEwMjAxMi01MTItS2 1477 V5VmFsdWUg eG1sbnM9InVybjppZXRmOnBhcmFtczp4bWw6bnM6Y3B4bWxzZWMiPg0KIC 1478 AgICAgICAgICAg ICAgPE5hbWVkQ3VydmUgVVJJPSJ1cm46b2lkOjEuMi42NDMuNy4xLj 1479 IuMS4yLjIiIC8+DQog ICAgICAgICAgICAgICA8UHVibGljS2V5PkV4a1BWUW9qT1JVUm 1480 drUERCTTloZFhRRGFvV2hM c3NHdkFtOFRwMDcyaGlhUlVGVjBNSk1MeXhRQ29lNFpPZU 1481 5yemhMY2FTclV3bDN4bi9PSjBZ VEIvMFBXMlhnSE5uanY4b2NhN0VJVXdibjJ0UmJxTH 1482 RxSHY0MURtaHVrUUxWRkwwYzRUVTZh VVJocGRmaENHTnI4ODFMbXZZL1RwZjRBS012eX 1483 pTa0NIND08L1B1YmxpY0tleT4NCiAgICAg ICAgICAgIDwvR09TVFIzNDEwMjAxMi01MT 1484 ItS2V5VmFsdWU+DQogICAgICAgICA8L0tleVZh 1485 bHVlPg0KICAgICAgPC9LZXlJbmZvPg0KICAgPC9TaWduYXR1cmU+DQo8L3Jvb3Q+ 1487 B.3. Signed XML document with GOST R 34.10-2001 algorithm in 1488 SignatureMethod element 1490 The following sample was constructed using the X.509 certificate from 1491 section 4.2 of [RFC4491]. 1493 X-coordinate of public key: 1495 0x577E324FE70F2B6DF45C437A0305E5FD2C89318C13CD0875401A026075689584 1497 Y-coordinate of public key: 1499 0x601AEACABC660FDFB0CBC7567EBBA6EA8DE40FAE857C9AD0038895B916CCEB8F 1501 Corresponding private key (d): 1503 0x0B293BE050D0082BDAE785631A6BAB68F35B42786D6DDA56AFAF169891040F77 1505 K value: 1507 0x5782C53F110C596F9155D35EBD25A06A89C50391850A8FEFE33B0E270318857C 1508 H-bar value: 1510 0xEF3E03620C2B0E87E43F503A839AB7868071EA28CA38AABD915D56A5F74400F4 1512 Signed XML document: 1514 1515 1516 Data 1517 1518 1519 1522 1526 1527 1528 1532 1533 1537 1538 FVQbzF2djfNNJO3JG0OLfSODlZkibTcUmF2DS4nnuPY= 1539 1540 1541 1542 1543 n2UHtdu25fPzJNYyojbNTq52V1D3UBVQqI5xNhdYopDpMjpeiN2H+3xyQ4O//nz 1544 s1Ln/oqwzvu9zpaH3Q0BPaw== 1545 1546 1547 1548 1550 1551 1552 hJVodWACGkB1CM0TjDGJLP3lBQN6Q1z0bSsP508yfleP68wWuZWIA9 1553 CafIWuD+SN6qa7flbHy7DfD2a8yuoaYA== 1554 1555 1556 1557 1558 1559 1561 Base64-encoded signed XML document: 1563 77u/ 1564 PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0idXRmLTgiPz48cm9vdD4NCiAgIDxE 1565 YXRhVG9TaWduIElkPSJUb1NpZ24iPkRhdGE8L0RhdGFUb1NpZ24+DQogICA8U2lnbmF0d 1566 XJl IHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwLzA5L3htbGRzaWcjIj4NCiAgI 1567 CAgIDxT aWduZWRJbmZvPg0KICAgICAgICAgPENhbm9uaWNhbGl6YXRpb25NZXRob2QgQ 1568 Wxnb3JpdGht PSJodHRwOi8vd3d3LnczLm9yZy9UUi8yMDAxL1JFQy14bWwtYzE0bi0yM 1569 DAxMDMxNSIgLz4N CiAgICAgICAgIDxTaWduYXR1cmVNZXRob2QgQWxnb3JpdGhtPSJ1c 1570 m46aWV0ZjpwYXJhbXM6 eG1sOm5zOmNweG1sc2VjOmFsZ29yaXRobXM6Z29zdHIzNDEwM 1571 jAwMS1nb3N0cjM0MTEiIC8+ DQogICAgICAgICA8UmVmZXJlbmNlIFVSST0iI1RvU2lnb 1572 iI+DQogICAgICAgICAgICA8VHJh bnNmb3Jtcz4NCiAgICAgICAgICAgICAgIDxUcmFuc 1573 2Zvcm0gQWxnb3JpdGhtPSJodHRwOi8v d3d3LnczLm9yZy9UUi8yMDAxL1JFQy14bWwtY 1574 zE0bi0yMDAxMDMxNSIgLz4NCiAgICAgICAg ICAgIDwvVHJhbnNmb3Jtcz4NCiAgICAgI 1575 CAgICAgIDxEaWdlc3RNZXRob2QgQWxnb3JpdGht PSJ1cm46aWV0ZjpwYXJhbXM6eG1sO 1576 m5zOmNweG1sc2VjOmFsZ29yaXRobXM6Z29zdHIzNDEx IiAvPg0KICAgICAgICAgICAgP 1577 ERpZ2VzdFZhbHVlPkZWUWJ6RjJkamZOTkpPM0pHME9MZlNP RGxaa2liVGNVbUYyRFM0b 1578 m51UFk9PC9EaWdlc3RWYWx1ZT4NCiAgICAgICAgIDwvUmVmZXJl bmNlPg0KICAgICAgP 1579 C9TaWduZWRJbmZvPg0KICAgICAgPFNpZ25hdHVyZVZhbHVlPm4yVUh0 ZHUyNWZQekpOW 1580 XlvamJOVHE1MlYxRDNVQlZRcUk1eE5oZFlvcERwTWpwZWlOMkgrM3h5UTRP Ly9uenMxT 1581 G4vb3F3enZ1OXpwYUgzUTBCUGF3PT08L1NpZ25hdHVyZVZhbHVlPg0KICAgICAg PEtle 1582 UluZm8+DQogICAgICAgICA8S2V5VmFsdWU+DQogICAgICAgICAgICA8R09TVFIzNDEw M 1583 jAwMUtleVZhbHVlIHhtbG5zPSJ1cm46aWV0ZjpwYXJhbXM6eG1sOm5zOmNweG1sc2VjIj 1584 4N CiAgICAgICAgICAgICAgIDxOYW1lZEN1cnZlIFVSST0idXJuOm9pZDoxLjIuNjQzLj 1585 IuMi4z Ni4wIiAvPg0KICAgICAgICAgICAgICAgPFB1YmxpY0tleT5oSlZvZFdBQ0drQj 1586 FDTTBUakRH SkxQM2xCUU42UTF6MGJTc1A1MDh5ZmxlUDY4d1d1WldJQTlDYWZJV3VEK1 1587 NONnFhN2ZsYkh5 N0RmRDJhOHl1b2FZQT09PC9QdWJsaWNLZXk+DQogICAgICAgICAgIC 1588 A8L0dPU1RSMzQxMDIw MDFLZXlWYWx1ZT4NCiAgICAgICAgIDwvS2V5VmFsdWU+DQogIC 1589 AgICA8L0tleUluZm8+DQog ICA8L1NpZ25hdHVyZT4NCjwvcm9vdD4= 1591 B.4. Signed XML document with X.509 certificate in KeyInfo element 1593 The following sample was constructed using the X.509 certificate from 1594 Appendix A of [R1323565.1.023-2018]. 1596 X-coordinate of public key: 1598 0x971566CEDA436EE7678F7E07E84EBB7217406C0B4747AA8FD2AB1453C3D0DFBA 1600 Y-coordinate of public key: 1602 0xAD58736965949F8E59830F8DE20FC6C0D177F6AB599874F1E2E24FF71F9CE643 1604 Corresponding private key (d): 1606 0xBFCF1D623E5CDD3032A7C6EABB4A923C46E43D640FFEAAF2C3ED39A8FA399924 1608 K value: 1610 0x5782C53F110C596F9155D35EBD25A06A89C50391850A8FEFE33B0E270318857C 1612 H-bar value: 1614 0x054D1DABB161D63424F8DABB2800708B00F78DA7582699E8F2F0A521C7CE8144 1616 Signed XML document: 1618 1619 1620 Data 1621 1622 1623 1626 1630 1631 1632 1637 1638 1642 1643 9QLsxPPo7LlX6IXqwzjcNDmbFuCCGivQ1s61hcPuITM= 1644 1645 1646 1647 1648 jcQJhWtWbTCV7bjFky5vGXXUFigc74FXRi79lZnFHK7pMjpeiN2H+3xyQ4O//nz 1649 s1Ln/oqwzvu9zpaH3Q0BPaw== 1650 1651 1652 1653 1654 MIICYjCCAg+gAwIBAgIBATAKBggqhQMHAQEDAjBWMSkwJwYJKoZIhvcNA 1655 QkBFhpHb3N0UjM0MTAtMjAxMkBleGFtcGxlLmNvbTEpMCcGA1UEAxMgR2 1656 9zdFIzNDEwLTIwMTIgKDI1NiBiaXQpIGV4YW1wbGUwHhcNMTMxMTA1MTQ 1657 wMjM3WhcNMzAxMTAxMTQwMjM3WjBWMSkwJwYJKoZIhvcNAQkBFhpHb3N0 1658 UjM0MTAtMjAxMkBleGFtcGxlLmNvbTEpMCcGA1UEAxMgR29zdFIzNDEwL 1659 TIwMTIgKDI1NiBiaXQpIGV4YW1wbGUwZjAfBggqhQMHAQEBATATBgcqhQ 1660 MCAiQABggqhQMHAQECAgNDAARAut/Qw1MUq9KPqkdHC2xAF3K7TugHfo9 1661 n525D2s5mFZdD5pwf90/i4vF0mFmr9nfRwMYP4o0Pg1mOn5RlaXNYraOB 1662 wDCBvTAdBgNVHQ4EFgQU1fIeN1HaPbw+XWUzbkJ+kHJUT0AwCwYDVR0PB 1663 AQDAgHGMA8GA1UdEwQIMAYBAf8CAQEwfgYDVR0BBHcwdYAU1fIeN1HaPb 1664 w+XWUzbkJ+kHJUT0ChWqRYMFYxKTAnBgkqhkiG9w0BCQEWGkdvc3RSMzQ 1665 xMC0yMDEyQGV4YW1wbGUuY29tMSkwJwYDVQQDEyBHb3N0UjM0MTAtMjAx 1666 MiAoMjU2IGJpdCkgZXhhbXBsZYIBATAKBggqhQMHAQEDAgNBAF5bm4BbA 1667 RR6hJLEoWJkOsYV3Hd7kXQQjz3CdqQfmHrz6TI6Xojdh/t8ckODv/587N 1668 S5/6KsM77vc6Wh90NAT2s= 1669 1670 1671 1672 1673 1675 Base64-encoded signed XML document: 1677 77u/ 1678 PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0idXRmLTgiPz48cm9vdD4NCiAgIDxE 1679 YXRhVG9TaWduIElkPSJUb1NpZ24iPkRhdGE8L0RhdGFUb1NpZ24+DQogICA8U2lnbmF0d 1680 XJl IHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwLzA5L3htbGRzaWcjIj4NCiAgI 1681 CAgIDxT aWduZWRJbmZvPg0KICAgICAgICAgPENhbm9uaWNhbGl6YXRpb25NZXRob2QgQ 1682 Wxnb3JpdGht PSJodHRwOi8vd3d3LnczLm9yZy9UUi8yMDAxL1JFQy14bWwtYzE0bi0yM 1683 DAxMDMxNSIgLz4N CiAgICAgICAgIDxTaWduYXR1cmVNZXRob2QgQWxnb3JpdGhtPSJ1c 1684 m46aWV0ZjpwYXJhbXM6 eG1sOm5zOmNweG1sc2VjOmFsZ29yaXRobXM6Z29zdHIzNDEwM 1685 jAxMi1nb3N0cjM0MTEyMDEy LTI1NiIgLz4NCiAgICAgICAgIDxSZWZlcmVuY2UgVVJJP 1686 SIjVG9TaWduIj4NCiAgICAgICAg ICAgIDxUcmFuc2Zvcm1zPg0KICAgICAgICAgICAgI 1687 CAgPFRyYW5zZm9ybSBBbGdvcml0aG09 Imh0dHA6Ly93d3cudzMub3JnL1RSLzIwMDEvU 1688 kVDLXhtbC1jMTRuLTIwMDEwMzE1IiAvPg0K ICAgICAgICAgICAgPC9UcmFuc2Zvcm1zP 1689 g0KICAgICAgICAgICAgPERpZ2VzdE1ldGhvZCBB bGdvcml0aG09InVybjppZXRmOnBhc 1690 mFtczp4bWw6bnM6Y3B4bWxzZWM6YWxnb3JpdGhtczpn b3N0cjM0MTEyMDEyLTI1NiIgL 1691 z4NCiAgICAgICAgICAgIDxEaWdlc3RWYWx1ZT45UUxzeFBQ bzdMbFg2SVhxd3pqY05Eb 1692 WJGdUNDR2l2UTFzNjFoY1B1SVRNPTwvRGlnZXN0VmFsdWU+DQog ICAgICAgICA8L1JlZ 1693 mVyZW5jZT4NCiAgICAgIDwvU2lnbmVkSW5mbz4NCiAgICAgIDxTaWdu YXR1cmVWYWx1Z 1694 T5qY1FKaFd0V2JUQ1Y3YmpGa3k1dkdYWFVGaWdjNzRGWFJpNzlsWm5GSEs3 cE1qcGVpT 1695 jJIKzN4eVE0Ty8vbnpzMUxuL29xd3p2dTl6cGFIM1EwQlBhdz09PC9TaWduYXR1 cmVWY 1696 Wx1ZT4NCiAgICAgIDxLZXlJbmZvPg0KICAgICAgICAgPFg1MDlEYXRhPg0KICAgICAg I 1697 CAgICAgPFg1MDlDZXJ0aWZpY2F0ZT5NSUlDWWpDQ0FnK2dBd0lCQWdJQkFUQUtCZ2dxaF 1698 FN SEFRRURBakJXTVNrd0p3WUpLb1pJaHZjTkFRa0JGaHBIYjNOMFVqTTBNVEF0TWpBeE 1699 1rQmxl R0Z0Y0d4bExtTnZiVEVwTUNjR0ExVUVBeE1nUjI5emRGSXpOREV3TFRJd01USW 1700 dLREkxTmlC aWFYUXBJR1Y0WVcxd2JHVXdIaGNOTVRNeE1UQTFNVFF3TWpNM1doY05Nek 1701 F4TVRBeE1UUXdN ak0zV2pCV01Ta3dKd1lKS29aSWh2Y05BUWtCRmhwSGIzTjBVak0wTV 1702 RBdE1qQXhNa0JsZUdG dGNHeGxMbU52YlRFcE1DY0dBMVVFQXhNZ1IyOXpkRkl6TkRFd0 1703 xUSXdNVElnS0RJMU5pQmlh WFFwSUdWNFlXMXdiR1V3WmpBZkJnZ3FoUU1IQVFFQkFUQV 1704 RCZ2NxaFFNQ0FpUUFCZ2dxaFFN SEFRRUNBZ05EQUFSQXV0L1F3MU1VcTlLUHFrZEhDMn 1705 hBRjNLN1R1Z0hmbzluNTI1RDJzNW1G WmRENXB3ZjkwL2k0dkYwbUZtcjluZlJ3TVlQNG 1706 8wUGcxbU9uNVJsYVhOWXJhT0J3RENCdlRB ZEJnTlZIUTRFRmdRVTFmSWVOMUhhUGJ3K1 1707 hXVXpia0ora0hKVVQwQXdDd1lEVlIwUEJBUURB Z0hHTUE4R0ExVWRFd1FJTUFZQkFmOE 1708 NBUUV3ZmdZRFZSMEJCSGN3ZFlBVTFmSWVOMUhhUGJ3 K1hXVXpia0ora0hKVVQwQ2hXcV 1709 JZTUZZeEtUQW5CZ2txaGtpRzl3MEJDUUVXR2tkdmMzUlNN elF4TUMweU1ERXlRR1Y0WV 1710 cxd2JHVXVZMjl0TVNrd0p3WURWUVFERXlCSGIzTjBVak0wTVRB dE1qQXhNaUFvTWpVMk 1711 lHSnBkQ2tnWlhoaGJYQnNaWUlCQVRBS0JnZ3FoUU1IQVFFREFnTkJB RjVibTRCYkFSUj 1712 ZoSkxFb1dKa09zWVYzSGQ3a1hRUWp6M0NkcVFmbUhyejZUSTZYb2pkaC90 OGNrT0R2Lz 1713 U4N05TNS82S3NNNzd2YzZXaDkwTkFUMnM9PC9YNTA5Q2VydGlmaWNhdGU+DQog ICAgIC 1714 AgICA8L1g1MDlEYXRhPg0KICAgICAgPC9LZXlJbmZvPg0KICAgPC9TaWduYXR1cmU+ 1715 DQo8L3Jvb3Q+ 1717 B.5. Signed XML document with GOST R 34.10-2012 algorithm and 256-bit 1718 public key in DEREncodedKeyValue 1720 The following sample was constructed using the X.509 certificate from 1721 Appendix A of [R1323565.1.023-2018]. 1723 X-coordinate of public key: 1725 0x971566CEDA436EE7678F7E07E84EBB7217406C0B4747AA8FD2AB1453C3D0DFBA 1727 Y-coordinate of public key: 1729 0xAD58736965949F8E59830F8DE20FC6C0D177F6AB599874F1E2E24FF71F9CE643 1731 Corresponding private key: 1733 0xBFCF1D623E5CDD3032A7C6EABB4A923C46E43D640FFEAAF2C3ED39A8FA399924 1735 K value: 1737 0x5782C53F110C596F9155D35EBD25A06A89C50391850A8FEFE33B0E270318857C 1739 H-bar value: 1741 0x054D1DABB161D63424F8DABB2800708B00F78DA7582699E8F2F0A521C7CE8144 1743 Signed XML document: 1745 1746 1747 Data 1748 1749 1750 1754 1758 1759 1760 1764 1765 1769 1770 9QLsxPPo7LlX6IXqwzjcNDmbFuCCGivQ1s61hcPuITM= 1771 1772 1773 1774 1775 jcQJhWtWbTCV7bjFky5vGXXUFigc74FXRi79lZnFHK7pMjpeiN2H+3xyQ4O//nz 1776 s1Ln/oqwzvu9zpaH3Q0BPaw== 1777 1778 1779 1780 MGYwHwYIKoUDBwEBAQEwEwYHKoUDAgIkAAYIKoUDBwEBAgIDQwAEQLrf0MNT 1781 FKvSj6pHRwtsQBdyu07oB36PZ+duQ9rOZhWXQ+acH/dP4uLxdJhZq/Z30cDG 1782 D+KND4NZjp+UZWlzWK0= 1783 1784 1785 1786 1788 Base64-encoded signed XML document: 1790 77u/ 1791 PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0idXRmLTgiPz48cm9vdD4NCiAgIDxE 1792 YXRhVG9TaWduIElkPSJUb1NpZ24iPkRhdGE8L0RhdGFUb1NpZ24+DQogICA8U2lnbmF0d 1793 XJl IHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwLzA5L3htbGRzaWcjIj4NCiAgI 1794 CAgIDxT aWduZWRJbmZvPg0KICAgICAgICAgPENhbm9uaWNhbGl6YXRpb25NZXRob2QgQ 1795 Wxnb3JpdGht PSJodHRwOi8vd3d3LnczLm9yZy9UUi8yMDAxL1JFQy14bWwtYzE0bi0yM 1796 DAxMDMxNSIgLz4N CiAgICAgICAgIDxTaWduYXR1cmVNZXRob2QgQWxnb3JpdGhtPSJ1c 1797 m46aWV0ZjpwYXJhbXM6 eG1sOm5zOmNweG1sc2VjOmFsZ29yaXRobXM6Z29zdHIzNDEwM 1798 jAxMi1nb3N0cjM0MTEyMDEy LTI1NiIgLz4NCiAgICAgICAgIDxSZWZlcmVuY2UgVVJJP 1799 SIjVG9TaWduIj4NCiAgICAgICAg ICAgIDxUcmFuc2Zvcm1zPg0KICAgICAgICAgICAgI 1800 CAgPFRyYW5zZm9ybSBBbGdvcml0aG09 Imh0dHA6Ly93d3cudzMub3JnL1RSLzIwMDEvU 1801 kVDLXhtbC1jMTRuLTIwMDEwMzE1IiAvPg0K ICAgICAgICAgICAgPC9UcmFuc2Zvcm1zP 1802 g0KICAgICAgICAgICAgPERpZ2VzdE1ldGhvZCBB bGdvcml0aG09InVybjppZXRmOnBhc 1803 mFtczp4bWw6bnM6Y3B4bWxzZWM6YWxnb3JpdGhtczpn b3N0cjM0MTEyMDEyLTI1NiIgL 1804 z4NCiAgICAgICAgICAgIDxEaWdlc3RWYWx1ZT45UUxzeFBQ bzdMbFg2SVhxd3pqY05Eb 1805 WJGdUNDR2l2UTFzNjFoY1B1SVRNPTwvRGlnZXN0VmFsdWU+DQog ICAgICAgICA8L1JlZ 1806 mVyZW5jZT4NCiAgICAgIDwvU2lnbmVkSW5mbz4NCiAgICAgIDxTaWdu YXR1cmVWYWx1Z 1807 T5qY1FKaFd0V2JUQ1Y3YmpGa3k1dkdYWFVGaWdjNzRGWFJpNzlsWm5GSEs3 cE1qcGVpT 1808 jJIKzN4eVE0Ty8vbnpzMUxuL29xd3p2dTl6cGFIM1EwQlBhdz09PC9TaWduYXR1 cmVWY 1809 Wx1ZT4NCiAgICAgIDxLZXlJbmZvPg0KICAgICAgICAgPERFUkVuY29kZWRLZXlWYWx1 Z 1810 SB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwOS94bWxkc2lnMTEjIj5NR1l3SHdZSU 1811 tv VURCd0VCQVFFd0V3WUhLb1VEQWdJa0FBWUlLb1VEQndFQkFnSURRd0FFUUxyZjBNTl 1812 RGS3ZT ajZwSFJ3dHNRQmR5dTA3b0IzNlBaK2R1UTlyT1poV1hRK2FjSC9kUDR1THhkSm 1813 hacS9aMzBj REdEK0tORDROWmpwK1VaV2x6V0swPTwvREVSRW5jb2RlZEtleVZhbHVlPg 1814 0KICAgICAgPC9L ZXlJbmZvPg0KICAgPC9TaWduYXR1cmU+DQo8L3Jvb3Q+ 1816 Appendix C. Acknowledgments 1818 We thank Ekaterina Griboedova and Evgeny Alekseev for their useful 1819 comments. 1821 Authors' Addresses 1823 Pavel Smirnov (editor) 1824 CryptoPro 1825 18, Suschevsky val 1826 Moscow 1827 127018 1828 Russian Federation 1829 Phone: +7 (495) 995-48-20 1830 Email: spv@cryptopro.ru 1831 Maria Paramonova 1832 CryptoPro 1833 18, Suschevsky val 1834 Moscow 1835 127018 1836 Russian Federation 1837 Phone: +7 (495) 995-48-20 1838 Email: mparamonova@cryptopro.ru 1840 Mikhail Khomenko 1841 CryptoPro 1842 18, Suschevsky val 1843 Moscow 1844 127018 1845 Russian Federation 1846 Phone: +7 (495) 995-48-20 1847 Email: xmv@cryptopro.ru 1849 Artyom Makarov 1850 CryptoPro 1851 18, Suschevsky val 1852 Moscow 1853 127018 1854 Russian Federation 1855 Phone: +7 (495) 995-48-20 1856 Email: makarov@cryptopro.ru