W3C home > Mailing lists > Public > public-xmlsec@w3.org > January 2010

<SignedInfo> canonicalization in XML Signature 2.0 Strawman Proposal

From: Ed Simon <edsimon@xmlsec.com>
Date: Tue, 19 Jan 2010 17:31:53 -0500
To: XMLSec WG Public List <public-xmlsec@w3.org>
Message-Id: <1263940313.4248.1.camel@XMLSEC-BIZ.phub.net.cable.rogers.com>

During this morning's teleconference call, reference was made of
desire for a straight-forward, simple algorithm for canonicalizing the
<SignedInfo> element. As promised, here is the link to my "XML
Signature 2.0 Strawman Proposal" presentation from 2007 that
describes, inter alia, canonicalizing the <SignedInfo> element in XML
Signature 2.0:

http://www.w3.org/2007/xmlsec/f2f-2007-11-08/XML-Signature-Proposal-2.pdf

The <SignedInfo> canonicalization discussion starts at slide 14. As
you will note, the <SignedInfo> in the slide deck is different than
the 1.x <SignedInfo> or the 2.0 <SignedInfo> -- this is because the
presentation suggests a significantly reorganized XML Signature.
Nonetheless, the principles for canonicalization of <SignedInfo>
presented therein maybe useful.

As Scott has pointed out, it is not clear from the presentation how
wildcard XML elements such as those in <SignatureMethod> would be
handled. In the strawman proposal, <SignatureMethod> is no longer
within <SignedInfo> but within a <Signers> element which lists one
more signers and their signature methods.

Ed

-- 
========================================
Ed Simon
613-726-9645
edsimon@xmlsec.com 
Received on Tuesday, 19 January 2010 22:39:11 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 19 January 2010 22:39:15 GMT