W3C home > Mailing lists > Public > w3c-ietf-xmldsig@w3.org > April to June 2002

Re: newbie Question about PKCS#7

From: Ed Simon <edsimon@xmlsec.com>
Date: Thu, 16 May 2002 08:23:36 -0400
Message-ID: <001201c1fcd4$8160de00$f2a0fea9@DJQC7111>
To: "Roman Huditsch" <roman.huditsch@hico.com>, <w3c-ietf-xmldsig@w3.org>
I think the first question to be pondered is NOT "How?" but "Why?".

You can of course use XML Signature to sign a PKCS#7 blob just like you can any other blob.  But I think the implication of your email is that you are looking for some standard specified way of combining PKCS#7 and XML Signature.  There isn't any.  Generally, XML Signature should be seen as the new way of doing digital signatures.  

It may make sense to port existing PKCS#7-based applications to XML Signature, but I doubt there would be any value trying to have a single digital signature be a hybrid of both XML Signature and PKCS#7.

Ed
  ----- Original Message ----- 
  From: Roman Huditsch 
  To: w3c-ietf-xmldsig@w3.org 
  Sent: Wednesday, May 15, 2002 9:13 AM
  Subject: newbie Question about PKCS#7


  I'm very new to the topic of XML Signature and I have therefore a rather simple question, which I couldn' solve myself by reading the spec. I wanted to look, if this topic was already discussed in your list, but the mailing-list archiev was down. 
  What I want to know is: How can I include the PKCS#7 Standard in an XML Signature? Do I have to use the http://www.w3.org/2000/09/xmldsig#rsa-sha1 URI? 

  wbr,
  Roman Huditsch
Received on Thursday, 16 May 2002 08:22:07 GMT

This archive was generated by hypermail 2.2.0 + w3c-0.29 : Thursday, 13 January 2005 12:10:15 GMT