W3C home > Mailing lists > Public > w3c-ietf-xmldsig@w3.org > July to September 1999

Re: Brown draft feedback on time stamping and on criticality flags

From: <tgindin@us.ibm.com>
Date: Wed, 28 Jul 1999 14:31:15 -0400
To: "John Boyer" <jboyer@uwi.com>
cc: "Richard Brown" <rdbrown@globeset.com>, "DSig Group" <w3c-ietf-xmldsig@w3.org>
Message-ID: <852567BC.0065D633.00@D51MTA05.pok.ibm.com>


"John Boyer" <jboyer@uwi.com> on 07/28/99 02:02:30 PM

To:   "Richard Brown" <rdbrown@globeset.com>
cc:   "DSig Group" <w3c-ietf-xmldsig@w3.org>
Subject:  Brown draft feedback on time stamping and on criticality flags





I have a copy of the Brown Draft dated 18 June 1999, which I hope is pretty
much the latest.

It seems to be always easy to find whatever I'm looking for in this draft!

Regarding criticality flags in the attributes, I seem to recall there being
a fair bit of aversion at and around the initial workshop on whether we
should have criticality flags.  The persons who expressed this opinion
seemed to have a great deal of experience with prior security protocols.
What were the problems, and have they been overcome?  Since the criticality
flags are either still included or have returned (I don't know which), I
assume there was a resolution.  What was it?

Regarding time/date stamping, it follows some ISO standard I don't have
(URL?), but that standard doesn't seem to include information on whether or
not the signer uses daylight savings time.  (Not that the verifier should
trust signer time settings).  Perhaps UTC time is different from GMT, but
whenever we go on daylight savings time here on the Pacific Coast, our
offset changes from 0800 to 0700 relative to GMT.  Does the same thing
happen with UTC?  If so, it could make things a fair bit easier for
programmers (very many of whom don't know about this little hiccup) to
produce the correct local time.

[Tom Gindin]   The ASN.1 UTC and GeneralizedTime formats both include a time
zone indicator: Z for GMT, +hhmm for east of GMT, -hhmm for west of GMT (-0700
for Pacific Daylight Time and -0800 for PST, for example).  However, the DER
encoding requires that you use GMT specifically.

Thanks,
John Boyer
Software Development Manager
UWI.Com -- The Internet Forms Company
Received on Wednesday, 28 July 1999 14:32:55 GMT

This archive was generated by hypermail 2.2.0 + w3c-0.29 : Thursday, 13 January 2005 12:10:07 GMT