W3C home > Mailing lists > Public > w3c-ietf-xmldsig@w3.org > April to June 1999

Re: Namespace treatment for C14N

From: Joseph M. Reagle Jr. <reagle@w3.org>
Date: Mon, 07 Jun 1999 15:18:55 -0400
Message-Id: <3.0.5.32.19990607151855.009a6210@localhost>
To: "Hiroshi Maruyama" <MARUYAMA@jp.ibm.com>
Cc: w3c-ietf-xmldsig@w3.org
At 09:19 AM 6/7/99 +0900, Hiroshi Maruyama wrote:
 >1. Namespace prefixes are always expanded to its original URI (including
 >the default namespace)
 >2. Hex coding of MD5 of the Expanded URI is used as the new prefix.

Ok. It's nice in that the schema definition language (SDL/DTD) is implicitly
included in the hash. However, this feature is now required on every single
signature. One could argue that there may be some applications that don't
care about the SDL that much (not worth the cost, or off-line), and if they
did, they should include it in the manifest.

 >This is not particularly readable but satisfies the following two
 >requirements.
 >  1. B is wellformed  (well-formedness)
 >  2. C14N(B)=B        (fixed point property)

I don't believe it meets #2 does it? If the URI transformation is part of
the C14N, then on re-processing the C14Nizer will not be able to find the
resource and produce the same hash. 

_________________________________________________________
Joseph Reagle Jr.   
Policy Analyst      mailto:reagle@w3.org
XML-DSig Co-Chair   http://w3.org/People/Reagle/
Received on Monday, 7 June 1999 15:19:01 GMT

This archive was generated by hypermail 2.2.0 + w3c-0.29 : Thursday, 13 January 2005 12:10:06 GMT