minutes of 4 November 1999 telecon from dee3@us.ibm.com on 1999-11-05 (w3c-ietf-xmldsig@w3.org from October to December 1999)

From: <dee3@us.ibm.com>
Date: Fri, 5 Nov 1999 10:56:44 -0500
To: w3c-ietf-xmldsig@w3.org
Message-ID: <85256820.00588E03.00@D51MTA10.pok.ibm.com>
XMLDSIG Teleconference Minutes, 4 November 1999

On call
     Barbara Fox, Microsoft
     John Boyer, UWI
     Donald Eastlake, IBM
     Ed Simon, Entrust
     Raghavan, Sun Microsystems,
     Mark Bartel, JetForm
     (Dave Solo, CitiCorp ? regrets)
     (Joseph Reagle, W3C ? regrets)

Notes by Donald Eastlake

Implementations, Code availabiity - < 10 minutes
Donals Eastlake ? have posted IBM canonicalization code on my home ftp
server as previously mentioned on mailing list.  This is from Hiroshi
Maruyama at the IBM Tokyo Research Laboratory.  The plan is to incorporate
this in the security suite up on IBM's alphaWorks site and also update the
XML digital signature stuff in the suite to  correspond to the current
working group draft core syntax and processing document.
Barb Fox ? It would be good to post sample correct XML digital signature
package output?.
Ed Simon ? May have some more reference code implementation next week?
Donald ? in the future there may be a private web site based on the IBM
code where you can cut and paste a signature and submit it and the web
server will tell you the results of trying to verify it.  Others are
welcome to set up such testing systems.

Signature Syntax & Processing draft questions:
     Securing Location/Transforms - < 10 minutes
       Levels of indirection, Manifests, References, ...
Discussion of recent suggestions that perhaps Location shouldn't be signed
and that the resulting ability to move data around might imply need for
different Transforms due to different encoding in different places, etc.
This can  be handled currently by having SignedInfo point to a Manifest
which points to a Manifest but that's kind of complex and depends on
applications behavior.
John Boyer - suggested accomplishing this by including optional Transforms
over SignedInfo in SignedInfo.  Such Transforms could, for example, cause
Location to be omitted from the digest.
This whole area needs further discussion and thought.

     Parameters - < 10 minutes
       Types a element names, attributes, ...
Several people spoke against having parameters be elements like Integer,
Real, Boolean, String, Binary, etc.  Not clear about the desirability if
these are qualified by a descriptive Namespace.  More descriptive element
names had not been suggested before by some due to fear of a need to
include them all in the DTD.
Ed Simon - specific elements  schema better that DTD and being worked on
with Joseph can be presented next week.
Donald ? This whole area needs further discussion.  Final syntax and
processing document should be careful to specify when elements / attributes
from other name spaces can be used for all parts of the syntax.

     Nonces - < 5 minutes
       Size, Entropy, Necessity ?
Barb Fox ? Feeling is that no nonce is required but moving the more
variable sub elements up near the beginning of enclosing signed elements to
make it less effective to try to pre-load digest functions is a probably a
good idea.
Donald ? specification should say it is designed for and only lists
signature algorithms not requiring a nonce.  Verbosity of XML makes it
likely that at least 512 bits will be feed to SHA-1 resulting is good
hashing.

Brief discussion of the idea of encoding a binary PKCS#7 signature in
SignatureValue.  Unanimous opinion of those on the call was that while this
mechanically fits into the syntax, it is not an XML digital signature and
would not be conformant to the standard.

     Canonicalization - < 10 minutes
Although more work is needed here to create a synthesis of different
comments on the mailing list, most of those on the call were of the opinion
that it will be very common for applications to use DOM to read SignedInfo.
As a result, some "canonicalization", i.e., a standard way of serializing
the DOM tree, will be essential to working XML digital signatures.
Some syntax constraints may also be needed to avoid problems due to
validating versus non-validating parsers.  For example, no entities,
pre-normalized attribute values?
XML data blocks that are signed are a bit different from SignedInfo and
might be treated as binary/text data requiring minimal or no
canonicalization.

     "SignatureProperties" - < 10 minutes
Discussion just confirmed WG consensus that SignatureProperties is the
place for, and only for, statements about the signature itself, such as
signing time.  Most actual use of CMS "signed attributes" seems to be that
sort of thing anyway.

     WG Meeting Agenda at IETF next week, see below
Ed Simon ? working on schema with Joseph Reagle.  Should have a slot 2nd
session after Canonicalization.  Time for implementations slot should be
longer.


Donald

Donald E. Eastlake, 3rd
17 Skyline Drive, Hawthorne, NY 10532 USA
dee3@us.ibm.com   tel: 1-914-784-7913, fax: 1-914-784-3833

home: 65 Shindegan Hill Road, RR#1, Carmel, NY 10512 USA
dee3@torque.pothole.com   tel: 1-914-276-2668
Received on Friday, 5 November 1999 11:16:22 UTC