How Does webMethods B2B Verify Digital Signatures?

When a sender signs a document, webMethods B2B uses the receiver's certificate in the sender's profile for verification. If webMethods B2B finds a set of certificates to use for that specific receiver, it uses the primary certificate in that set. Else, it uses the default set of certificates that are specified in the sender's profile.

webMethods B2B performs the following checks during a sign-verify scenario:

• Verifies that the CA (certificate authority) that signed the certificate is included in the list of trusted CA certificates.
• Verifies document integrity and sender identity by matching digital signature certificates.