I am in a situation where my application has to read the XML file, from which the other application will exit on a specific location on the file system ( On many platforms) I control the content of this document Other applications are providing bus transportation.
I want to make sure that the document has not been modified in transit or has been made in any way. Currently, we are just writing the salted hash of the document string in the beginning of the file before the XML document, when we parse the document, then we just leave the hash, compare it with a hash of the rest of the document, and then it Send to the porter.
Does anyone have any experience with such a scenario that they want to share? Is there any weakness or easy ways I am missing? Depending on these documents, how important are these documents may be, though
However, a more bullet proof Mechanism will be to use something asymmetric as PGP signature if you have PGP support at both ends.
Comments
Post a Comment