<?xml version="1.0" encoding="UTF-8"?>
<!--MOA SPSS 1.3 Configuration File created by MOA SPSS Configuration Mapper-->
<cfg:MOAConfiguration xmlns:cfg="http://reference.e-government.gv.at/namespace/moaconfig/20021122#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#">
	<cfg:SignatureCreation>
		<cfg:KeyModules>
			<cfg:SoftwareKeyModule>
				<cfg:Id>SKM_Kunde1</cfg:Id>
				<cfg:FileName>keys/customer1/moa-signaturdienst-kunde1[pwd=kunde1].p12</cfg:FileName>
				<cfg:Password>kunde1</cfg:Password>
			</cfg:SoftwareKeyModule>
			<cfg:SoftwareKeyModule>
				<cfg:Id>SKM_Kunde2</cfg:Id>
				<cfg:FileName>keys/customer2/moa-signaturdienst-kunde2[pwd=kunde2].p12</cfg:FileName>
				<cfg:Password>kunde2</cfg:Password>
			</cfg:SoftwareKeyModule>
			<cfg:SoftwareKeyModule>
				<cfg:Id>SKM_allgemein</cfg:Id>
				<cfg:FileName>keys/common/moa-signaturdienst-allekunden[pwd=allekunden].p12</cfg:FileName>
				<cfg:Password>allekunden</cfg:Password>
			</cfg:SoftwareKeyModule>
		</cfg:KeyModules>
		<cfg:KeyGroup>
			<cfg:Id>KG_Kunde1</cfg:Id>
			<cfg:Key>
				<cfg:KeyModuleId>SKM_Kunde1</cfg:KeyModuleId>
				<cfg:KeyCertIssuerSerial>
					<dsig:X509IssuerName>CN=Test CA - Signaturdienste,OU=Technik und Standards,O=Stabstelle IKT-Strategie des Bundes,C=AT</dsig:X509IssuerName>
					<dsig:X509SerialNumber>7</dsig:X509SerialNumber>
				</cfg:KeyCertIssuerSerial>
			</cfg:Key>
		</cfg:KeyGroup>
		<cfg:KeyGroup>
			<cfg:Id>KG_Kunde2</cfg:Id>
			<cfg:Key>
				<cfg:KeyModuleId>SKM_Kunde2</cfg:KeyModuleId>
				<cfg:KeyCertIssuerSerial>
					<dsig:X509IssuerName>CN=Test CA - Signaturdienste,OU=Technik und Standards,O=Stabstelle IKT-Strategie des Bundes,C=AT</dsig:X509IssuerName>
					<dsig:X509SerialNumber>8</dsig:X509SerialNumber>
				</cfg:KeyCertIssuerSerial>
			</cfg:Key>
		</cfg:KeyGroup>
		<cfg:KeyGroup>
			<cfg:Id>KG_allgemein</cfg:Id>
			<cfg:Key>
				<cfg:KeyModuleId>SKM_allgemein</cfg:KeyModuleId>
				<cfg:KeyCertIssuerSerial>
					<dsig:X509IssuerName>CN=Test CA - Signaturdienste,OU=Technik und Standards,O=Stabstelle IKT-Strategie des Bundes,C=AT</dsig:X509IssuerName>
					<dsig:X509SerialNumber>9</dsig:X509SerialNumber>
				</cfg:KeyCertIssuerSerial>
			</cfg:Key>
		</cfg:KeyGroup>
		<cfg:KeyGroupMapping>
			<cfg:KeyGroupId>KG_allgemein</cfg:KeyGroupId>
		</cfg:KeyGroupMapping>
		<cfg:KeyGroupMapping>
			<cfg:CustomerId>
				<dsig:X509IssuerName>CN=Test CA - Verschl\C3\BCsselung B\C3\BCrger,OU=Technik und Standards,O=Stabstelle IKT-Strategie des Bundes,C=AT</dsig:X509IssuerName>
				<dsig:X509SerialNumber>0</dsig:X509SerialNumber>
			</cfg:CustomerId>
			<cfg:KeyGroupId>KG_Kunde1</cfg:KeyGroupId>
		</cfg:KeyGroupMapping>
		<cfg:KeyGroupMapping>
			<cfg:CustomerId>
				<dsig:X509IssuerName>CN=Test CA - Verschl\C3\BCsselung B\C3\BCrger,OU=Technik und Standards,O=Stabstelle IKT-Strategie des Bundes,C=AT</dsig:X509IssuerName>
				<dsig:X509SerialNumber>1</dsig:X509SerialNumber>
			</cfg:CustomerId>
			<cfg:KeyGroupId>KG_Kunde2</cfg:KeyGroupId>
		</cfg:KeyGroupMapping>
		<cfg:XMLDSig>
			<cfg:CanonicalizationAlgorithm>http://www.w3.org/TR/2001/REC-xml-c14n-20010315</cfg:CanonicalizationAlgorithm>
			<cfg:DigestMethodAlgorithm>http://www.w3.org/2000/09/xmldsig#sha1</cfg:DigestMethodAlgorithm>
		</cfg:XMLDSig>
	</cfg:SignatureCreation>
	<cfg:SignatureVerification>
		<cfg:CertificateValidation>
			<cfg:PathConstruction>
				<cfg:AutoAddCertificates>true</cfg:AutoAddCertificates>
				<cfg:UseAuthorityInformationAccess>true</cfg:UseAuthorityInformationAccess>
				<cfg:CertificateStore>
					<cfg:DirectoryStore>
						<cfg:Location>certstore</cfg:Location>
					</cfg:DirectoryStore>
				</cfg:CertificateStore>
			</cfg:PathConstruction>
			<cfg:PathValidation>
				<cfg:ChainingMode>
					<cfg:DefaultMode>pkix</cfg:DefaultMode>
					<cfg:TrustAnchor>
						<cfg:Identification>
							<dsig:X509IssuerName>CN=A-Trust-nQual-0,OU=A-Trust-nQual-0,O=A-Trust,C=AT</dsig:X509IssuerName>
							<dsig:X509SerialNumber>536</dsig:X509SerialNumber>
						</cfg:Identification>
						<cfg:Mode>chaining</cfg:Mode>
					</cfg:TrustAnchor>
				</cfg:ChainingMode>
				<cfg:TrustProfile>
					<cfg:Id>Test-Signaturdienste</cfg:Id>
					<cfg:TrustAnchorsLocation>trustProfiles/test</cfg:TrustAnchorsLocation>
				</cfg:TrustProfile>
				<cfg:TrustProfile>
					<cfg:Id>CertifiedSignature</cfg:Id>
					<cfg:TrustAnchorsLocation>trustProfiles/certifiedSignature</cfg:TrustAnchorsLocation>
				</cfg:TrustProfile>
				<cfg:TrustProfile>
					<cfg:Id>CertifiedSignature+Test</cfg:Id>
					<cfg:TrustAnchorsLocation>trustProfiles/certifiedSignature+Test</cfg:TrustAnchorsLocation>
				</cfg:TrustProfile>
				<cfg:TrustProfile>
					<cfg:Id>SecureSignature</cfg:Id>
					<cfg:TrustAnchorsLocation>trustProfiles/secureSignature</cfg:TrustAnchorsLocation>
				</cfg:TrustProfile>
				<cfg:TrustProfile>
					<cfg:Id>SecureSignature-Qual-Only</cfg:Id>
					<cfg:TrustAnchorsLocation>trustProfiles/secureSignature-qual-only</cfg:TrustAnchorsLocation>
				</cfg:TrustProfile>
				<cfg:TrustProfile>
					<cfg:Id>SecureSignature+Test</cfg:Id>
					<cfg:TrustAnchorsLocation>trustProfiles/secureSignature+Test</cfg:TrustAnchorsLocation>
				</cfg:TrustProfile>
				<cfg:TrustProfile>
					<cfg:Id>IdentityLink</cfg:Id>
					<cfg:TrustAnchorsLocation>trustProfiles/identityLink</cfg:TrustAnchorsLocation>
				</cfg:TrustProfile>
				<cfg:TrustProfile>
					<cfg:Id>IdentityLink+Test</cfg:Id>
					<cfg:TrustAnchorsLocation>trustProfiles/identityLink+Test</cfg:TrustAnchorsLocation>
				</cfg:TrustProfile>
			</cfg:PathValidation>
			<cfg:RevocationChecking>
				<cfg:EnableChecking>true</cfg:EnableChecking>
				<cfg:MaxRevocationAge>0</cfg:MaxRevocationAge>
				<cfg:ServiceOrder>
					<cfg:Service>CRL</cfg:Service>
					<cfg:Service>OCSP</cfg:Service>
				</cfg:ServiceOrder>
				<cfg:Archiving>
					<cfg:EnableArchiving>false</cfg:EnableArchiving>
					<cfg:ArchiveDuration>365</cfg:ArchiveDuration>
					<cfg:Archive>
						<cfg:DatabaseArchive>
							<cfg:JDBCURL>jdbc:url</cfg:JDBCURL>
							<cfg:JDBCDriverClassName>fully.qualified.classname</cfg:JDBCDriverClassName>
						</cfg:DatabaseArchive>
					</cfg:Archive>
				</cfg:Archiving>
			</cfg:RevocationChecking>
		</cfg:CertificateValidation>
	</cfg:SignatureVerification>
</cfg:MOAConfiguration>