W3C home > Mailing lists > Public > public-xmlsec@w3.org > February 2009

Re: KeyInfo and raw data (RetrievalMethod Types)

From: Sean Mullan <Sean.Mullan@Sun.COM>
Date: Tue, 17 Feb 2009 08:11:11 -0500
To: Scott Cantor <cantor.2@osu.edu>
Cc: "'Thomas Roessler'" <tlr@w3.org>, "'XMLSec WG'" <public-xmlsec@w3.org>
Message-id: <499AB76F.4030008@sun.com>
Scott Cantor wrote:
> Thomas Roessler wrote on 2009-02-16:
>> I can't quite tell whether these are intended to identify raw, binary
>> data (which, in case we're referring to something that lives in the
>> same XML document, would probably have to be base64 decoded through a
>> ds:Transform), or whether it's intended for base64 encoded versions of
>> the raw data.
> 
> I believe it's intended to be raw, unencoded DER. That's how I always
> interpreted it.
> 
> -- Scott

I agree. And the only examples I have seen always use an external reference. For 
example: 
http://svn.apache.org/viewvc/xml/security/trunk/data/ie/baltimore/merlin-examples/merlin-xmldsig-twenty-three/signature-retrievalmethod-rawx509crt.xml?revision=351040&view=markup

--Sean
Received on Tuesday, 17 February 2009 13:11:48 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Monday, 7 December 2009 10:43:57 GMT