W3C home > Mailing lists > Public > w3c-ietf-xmldsig@w3.org > July to September 1999

RE: on criticality flags

From: Barb Fox (Exchange) <bfox@Exchange.Microsoft.com>
Date: Wed, 28 Jul 1999 16:05:35 -0700
Message-ID: <4992824A0863D211964B0008C7B1ACB803E1B696@FIFI.platinum.corp.microsoft.com>
To: "'John Boyer'" <jboyer@uwi.com>, "'DSig Group'" <w3c-ietf-xmldsig@w3.org>
John:

I believe that criticality is something that the wg agrees should be
dropped. I also expect that there will be lots of other discussion
topics/changes from Richard's draft as we evolve the standard. 

--Barb

-----Original Message-----
From: John Boyer [mailto:jboyer@uwi.com]
Sent: Wednesday, July 28, 1999 3:53 PM
To: Barb Fox (Exchange); 'DSig Group'
Subject: RE: on criticality flags


Good, that is as I remembered too.

My question is specific to the Brown draft
http://www.w3.org/Signature/Drafts/xmldsig-signature-990618.html

which has always had a criticality attribute on the 'attribute' element and
that has not disappeared.  It is in the text and HTML versions.

Is the criticality flag in this case at odds with the experiences that you
and David Solo have had?

Thanks,
John Boyer
Software Development Manager
UWI.Com -- The Internet Forms Company


-----Original Message-----
From: Barb Fox (Exchange) [mailto:bfox@Exchange.Microsoft.com]
Sent: Wednesday, July 28, 1999 3:43 PM
To: John Boyer; 'DSig Group'
Subject: RE: on criticality flags


RE: > Regarding criticality flags in the attributes, I seem to recall there
being
> a fair bit of aversion at and around the initial workshop on whether we
> should have criticality flags.  The persons who expressed this opinion
> seemed to have a great deal of experience with prior security protocols.
> What were the problems, and have they been overcome?  Since the
criticality
> flags are either still included or have returned (I don't know which), I
> assume there was a resolution.  What was it?

John:

I believe that Dave Solo and I both posted on this with strong feelings
against criticality flags. My comment was that WEBDAV has already thought
this through (ck out RFC
2518) and have chosen to have clients ignore elements they do not
understand. I also share Dave's  "sub-optimal" experience with criticality
flags in PKIX. Frankly, I thought we agreed to drop them at MIT and I don't
recall any revival in Oslo.

--Barbara Fox
Microsoft
Received on Wednesday, 28 July 1999 19:07:48 GMT

This archive was generated by hypermail 2.2.0 + w3c-0.29 : Thursday, 13 January 2005 12:10:07 GMT