我刚开始学习XML安全性.我们有VS-2005和ASP.Net 2.0.我想将XML发送到外部URL并且需要加密.我正在做MSDN文章ms229744和ms229943正在做的事情,但在执行DecryptDocument()方法时,我不断收到"无法检索解密密钥".我正在使用我们的SSL Web证书,我目前使用X509Certificate对XML进行数字签名,它运行正常.
我还要求其他人从另一家商店尝试这个,他们也得到了同样的错误.是否存在X509解密方法的文档问题?在下面的测试代码中,我将XML发布到另一个试图解密XML的网页.我不明白的是,如果DecryptDocument()方法甚至不检查是否嵌入了公钥,它是如何工作的.这是问题吗?如果是这样,我如何检查以确保它嵌入在XML中?任何帮助表示赞赏.谢谢!
Private Function EncryptXml(ByVal xmlDoc As XmlDocument, ByVal Cert As X509Certificates.X509Certificate2) As XmlDocument
Dim dataNodes As XmlNodeList = xmlDoc.SelectNodes("Agency")
If dataNodes.Count <> 1 Then
Return Nothing
End If
Dim elementToEncrypt As XmlElement = CType(xmlDoc.GetElementsByTagName("Agency")(0), XmlElement)
Dim eXml As New EncryptedXml()
Dim Key As RSACryptoServiceProvider = CType(Cert.PrivateKey, RSACryptoServiceProvider)
Dim edElement As EncryptedData = eXml.Encrypt(elementToEncrypt, Cert)
EncryptedXml.ReplaceElement(elementToEncrypt, edElement, False)
Return xmlDoc
End Function
Protected Sub Page_Load(ByVal sender As Object, ByVal e As System.EventArgs) Handles Me.Load
If Not IsPostBack Then
If Request.Form("hdnSignedXML") IsNot Nothing Then
Dim strXML As String = Request.Form("hdnSignedXML")
Dim xmlDoc As New XmlDocument
xmlDoc.LoadXml(strXML)
xmlDoc.PreserveWhitespace = True
Response.ContentType = "text/plain"
Response.Write(strXML)
Dim exml As New Xml.EncryptedXml(xmlDoc)
exml.DecryptDocument()
xmlDoc.Save("C:/inetpub/TestExampleDecrypted.xml")
Response.End()
End If
End Sub
J.P
您的 Web 进程很可能无法访问私钥。我曾经遇到过同样的事情,并在这个项目中发布了答案:
如果您仍然遇到问题,对于我们的加密例程,我们参考了http://msdn.microsoft.com/en-us/magazine/cc163454.aspx