Updating RNG Schemas for XML Security: KeyInfoReference, Encryption, Generic Hybrid Ciphers from Frederick Hirsch on 2010-02-25 (public-xmlsec@w3.org from February 2010)

From: Frederick Hirsch <frederick.hirsch@nokia.com>
Date: Thu, 25 Feb 2010 13:34:37 -0500
To: Makoto MURATA <eb2m-mrt@asahi-net.or.jp>
Cc: Frederick Hirsch <frederick.hirsch@nokia.com>, XMLSec WG Public List <public-xmlsec@w3.org>
Message-Id: <A44BB6A5-3029-41D7-8E5D-B17CAD4D3727@nokia.com>

Makoto

Thanks very much for your latest update of the XML Security RNG  
schemas. I have updated our repository with your changes.

(1) KeyInfoReference

As part of XML Signature 1.1 Last Call review, we added the following  
KeyInfoReference element schema to XML Signature 1.1 (as another  
optional child of KeyInfo) [1]:

<element name="KeyInfoReference" type="dsig11:KeyInfoReferenceType"/>
   <complexType name="KeyInfoReferenceType">
     <attribute name="URI" type="anyURI" use="required"/>
     <attribute name="Id" type="ID" use="optional"/>
   </complexType>

I think the following might need to be added to xmldsig11-schema.rnc:

ds_KeyInfoChild |= ds11_KeyInfoReference

ds11_KeyInfoReference = element { ds11_KeyInfoReferenceType }
ds11_KeyInfoReferenceType =
   attribute URI { xsd:anyURI },
   attribute Id { ds_IdType }?,

Is this correct?

(2) XML Encryption 1.1 and Generic Hybrid Ciphers

We are planning to publish in the next week (week of 2 March 2010) an  
updated draft of XML Encryption 1.1 [2] and Generic Hybrid Ciphers  
[3].  Do you have any RNG schema available for these? If so, I'll add  
it to our XML Security RNG Schemas draft and make sure these documents  
reference it.

(3) Exclusive Canonicalization

In your last update you provided new files related to exclusive  
canonicalization : exclusiveC14N.rnc, any-containing-xmldsig11- 
properties-exclusiveC14N.rnc

I propose to update the XML Security RELAX NG Schemas draft [4]  to  
include these in the XML Signature Properties section, noting that  
they are appropriate when Exclusive canonicalization is used. Does  
that make sense?

Thanks

regards, Frederick

Frederick Hirsch
Nokia

[1] http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-11/Overview.htm#sec-KeyInfoReference

[2] http://www.w3.org/2008/xmlsec/Drafts/xmlenc-core-11/Overview.htm

[3] http://www.w3.org/2008/xmlsec/Drafts/key-encapsulation/generic-hybrid.html

[4] http://www.w3.org/2008/xmlsec/Drafts/xmlsec-rngschema/Overview.html

Received on Thursday, 25 February 2010 18:35:17 UTC