WSSecDKSign sigBuilder = new WSSecDKSign();
java.security.Key key = crypto.getPrivateKey("wss40", "security");
sigBuilder.setExternalKey(key.getEncoded(), secToken.getElement());
sigBuilder.setSignatureAlgorithm(XMLSignature.ALGO_ID_MAC_HMAC_SHA1);
sigBuilder.build(doc, secHeader);
sigBuilder.appendSigToHeader(secHeader);
if (LOG.isDebugEnabled()) {
LOG.debug("Encrypted message: ThumbprintSHA1 + DerivedKeys");