Comment by layer8
> All an XML signature does is let you cryptographically sign an XML document. Same thing as what JWTs do with alg: "RS256" (no ES256, because remember: the year is 2000).
This stopped being true in 2005, see RFC 4050.
> All an XML signature does is let you cryptographically sign an XML document. Same thing as what JWTs do with alg: "RS256" (no ES256, because remember: the year is 2000).
This stopped being true in 2005, see RFC 4050.