W3C home > Mailing lists > Public > public-xmlsec@w3.org > October 2009

Propose text for requirements for ISSUE-45 Action-387 - Completed

From: Edgar, Gerald <gerald.edgar@boeing.com>
Date: Fri, 9 Oct 2009 15:29:26 -0700
To: "public-xmlsec@w3.org" <public-xmlsec@w3.org>
Message-ID: <AA2A6A44CDA6E04FA6C6963A13C5EB9061D5393696@XCH-NW-06V.nw.nos.boeing.com>
Propose text for requirements for ISSUE-45  - ACTION-387 completed

The XML Security use Cases and Requirements document 
( http://www.w3.org/TR/2009/WD-xmlsec-reqs-20090226/ )
Section 3.3.3 states:

2. Any or all of messages may be signed and/or encrypted zero or more times in any order. Signatures and encryptions may overlap. A receiver must be able to properly verify signatures and decrypt data in the proper order (assuming access to the necessary secrets or trust points) based on nothing but the message.

3. It must be possible to determine whether the correct portions of the message have been signed and encrypted with the correct keys according to policy.



I believe this existing requirement addresses multiple or layered signatures of ISSUE-45
No changes are needed to the requirements document is needed.

Gerald Edgar, CISSP
Enterprise Architecture & Information Security
Received on Friday, 9 October 2009 22:30:12 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Monday, 7 December 2009 10:44:00 GMT