Songuard Digital Signature
1. Description of Terms
|Digital Signature||A digital signature is a mathematical scheme for presenting the authenticity of digital messages or documents.|
|Digest/Hash||It is a mathematical algorithm that maps data of an arbitrary size to a bit string of a fixed size (a hash) and is designed to be a one-way function, a function which is impossible to invert.
Digest/Hash has the following properties:
|Private Key||Key (large random number) which is known to the owner, in this case Songuard. This key resides on the server and is used to create a digital signature. This key will not be shared with anyone.|
|Public Key||Key (large random number) which is generated by Songuard and shared with the user to verify the digital signature.|
2. Digital Signature
2.1. Songuard Flow
2.2 Digital Signature file
The “responseDocument.xml” file in the zip file attached to the submission response email contains the integrity information of the submission. The image below describes each tag value (<…> and </…> are called the start and end tags respectively and the text between the start and end tag is called the value).