Insert a decryption transform into the XML digital signatures so verification applications can validate the signature, even if all, or part, of the signed content is encrypted after it has been signed.

The sample applications accompanying the toolkit include a comprehensive example of working with the decryption transform.

etjava\examples\source\com\entrust\toolkit\examples\xml\xml_readme.html

Creating a decryption transform

Create a decryption transform.

com.entrust.toolkit.xencrypt.core.TransformImplDecryption decTransform = new TransformImplDecryption();

Setting the decryption transform

Set the decryption transform for the reference you are configuring.

reference.insertTransformAt(decTransform, reference.getTransformNumber());

Where reference is an iaik.ixsil.core.SignerReference instance you created earlier in the process of creating the digital signature.

The decryption transform should be the last transform listed in the <Transforms> element.