W3C home > Mailing lists > Public > public-xmlsec@w3.org > September 2008

Action: A need to address requirements listed as Issues

From: Edgar, Gerald <gerald.edgar@boeing.com>
Date: Mon, 22 Sep 2008 13:49:48 -0700
Message-ID: <DC298B2E18C4C6468BA017B020D393E207B72EF4@XCH-NW-3V1.nw.nos.boeing.com>
To: "XMLSec WG Public List" <public-xmlsec@w3.org>

There are a number of issues that have notes in them indicating they are
requirements. We need to group these appropriately and remove any
duplicates. We also need to make sure that they either addressed in the
requirements or a decision is made that they are not requirements. I
have retained the link to the tracking page of each issue so that it is
easy to determine the context. 

I think it is appropriate to discuss this and come to a resolution so
these can be addressed and the associated issues can be closed.

Gerald Edgar

------------------------------------------

ISSUE-3 <http://www.w3.org/2008/xmlsec/track/issues/3> 
OPEN
Can we limit the generality of subsetting to reduce complexity, e.g.
XPath 2.0
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-4 <http://www.w3.org/2008/xmlsec/track/issues/4> 
OPEN
Need to allow transforms to go between octets and nodeset
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-5 <http://www.w3.org/2008/xmlsec/track/issues/5> 
OPEN
Which selections from subtree are required
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-6 <http://www.w3.org/2008/xmlsec/track/issues/6> 
OPEN
Is there requirement to canonicalize/sign exi representation
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

>>>>>>>>>>>>>>> Digital Signature Issues <<<<<<<<<<<<<<<<

ISSUE-9 <http://www.w3.org/2008/xmlsec/track/issues/9> 
OPEN
Review WS-I BSP constraints on DSig
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)
--> This seems to address issues of digital signature with WS-I BSP

ISSUE-12 <http://www.w3.org/2008/xmlsec/track/issues/12> 
CLOSED
What would it take for XML Signature to be usable for Mail
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)
--> This seems to address issues of digital signature with e-mail - 


ISSUE-13 <http://www.w3.org/2008/xmlsec/track/issues/13> 
OPEN
What would it take to use XML Signature for structured non-XML content
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-19 <http://www.w3.org/2008/xmlsec/track/issues/19> 
OPEN
Placement of signature relative to signing or verification, different
placement?
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-27 <http://www.w3.org/2008/xmlsec/track/issues/27> 
OPEN
Profile XML Signature spec to disallow removal of used namespace nodes
from nodesets
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-32 <http://www.w3.org/2008/xmlsec/track/issues/32> 
OPEN
How to identify profile, when, where. Not in signature but earlier?
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-33 <http://www.w3.org/2008/xmlsec/track/issues/33> 
OPEN
Schema not validating when enveloped signature added and not included in
original doc schema
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

>>>>>>>>>>>>>>>>> </ Digital Signature Issues > <<<<<<<<<<<<<<<<<<<<

>>>>>>>>>>>>>>>>>>> < Streaming Requirements > <<<<<<<<<<<<<<<<<<

ISSUE-15 <http://www.w3.org/2008/xmlsec/track/issues/15> 
OPEN
Minimal caching to support streaming
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-16 <http://www.w3.org/2008/xmlsec/track/issues/16> 
OPEN
Backward reference for streaming - don't know what is referenced, algs
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

>>>>>>>>>>>>>>>>>>> </ Streaming Requirements > <<<<<<<<<<<<<<<<<<


ISSUE-17 <http://www.w3.org/2008/xmlsec/track/issues/17> 
OPEN
Placement of KeyInfo relative to SIgnedInfo
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-18 <http://www.w3.org/2008/xmlsec/track/issues/18> 
OPEN
Data between algorithm info and digest?
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-20 <http://www.w3.org/2008/xmlsec/track/issues/20> 
OPEN
Transform model should support streaming, filtering model
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-21 <http://www.w3.org/2008/xmlsec/track/issues/21> 
OPEN
Arbitrary selection from nodeset vs XPath expressions without backward
references, traversal and navigation
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-22 <http://www.w3.org/2008/xmlsec/track/issues/22> 
OPEN
Requirement to validate xml before application processing, signature
processing, thus need to read entire document before processing, thus
not true streaming
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-23 <http://www.w3.org/2008/xmlsec/track/issues/23> 
CLOSED
Requirement for NodeSets
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-24 <http://www.w3.org/2008/xmlsec/track/issues/24> 
OPEN
Requirement for NodeSets
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-25 <http://www.w3.org/2008/xmlsec/track/issues/25> 
OPEN
Web services profile
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-26 <http://www.w3.org/2008/xmlsec/track/issues/26> 
OPEN
Require well formed XML between transforms
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-28 <http://www.w3.org/2008/xmlsec/track/issues/28> 
OPEN
QNames?  [Qualified names?]
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)
	>  [from meeting record]  exclusive c14n doesn't solve anything,

	>  can get namespace declarations multiple times
   >  shouldn't allow removal of used namespace nodes


ISSUE-29 <http://www.w3.org/2008/xmlsec/track/issues/29> 
OPEN
Able to run transforms in parallel (in general parallelism related to
pipelining)
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-30 <http://www.w3.org/2008/xmlsec/track/issues/30> 
OPEN
Limit XPath Filter transform to be first transform or to not use parent
axis
2008-07-17
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-37 <http://www.w3.org/2008/xmlsec/track/issues/37> 
OPEN
Simplified c14n for signing versus more general c14n, e.g. not produce
compliant xml document
2008-07-29
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-38 <http://www.w3.org/2008/xmlsec/track/issues/38> 
OPEN
Profile for signature processing for non-XML or for contrained XML
requirements
2008-07-29
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-39 <http://www.w3.org/2008/xmlsec/track/issues/39> 
OPEN
Namespace Undeclarations and canonicalization
2008-07-29
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-40 <http://www.w3.org/2008/xmlsec/track/issues/40> 
OPEN
Appropriate signing/verification position in EXI workflow, expectations
and correctness review
2008-07-29
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-41 <http://www.w3.org/2008/xmlsec/track/issues/41> 
OPEN
Signing compact EXI representation of XML - is that reproducable for
verification
2008-07-29
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-42 <http://www.w3.org/2008/xmlsec/track/issues/42> 
OPEN
Backward and forward compatibility
2008-07-29
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-44 <http://www.w3.org/2008/xmlsec/track/issues/44> 
OPEN
Requirement to enable signatures on documents that do not anticipate
signatures in the schema
2008-07-29
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-48 <http://www.w3.org/2008/xmlsec/track/issues/48> 
DerivedKeyType
OPEN
No support for derived keys in XML Dsig, XML Enc
2008-08-28
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-49 <http://www.w3.org/2008/xmlsec/track/issues/49> 
DerivedKeyType
CLOSED
No support for derived keys in XML Dsig, XML Enc
2008-08-28
Rqmts (XML Signature and Canonicalization V Next Requirements)

ISSUE-51 <http://www.w3.org/2008/xmlsec/track/issues/51> 
scantor
OPEN
Effects of schema normalization on signature verification
2008-09-02
Rqmts (XML Signature and Canonicalization V Next Requirements)



----------------------------------------


Gerald Edgar, CISSP
Enterprise Architecture & Information Security
Received on Monday, 22 September 2008 20:50:42 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Monday, 7 December 2009 10:43:54 GMT