W3C home > Mailing lists > Public > w3c-ietf-xmldsig@w3.org > January to March 2003

Re: QUESTION ABOUT PKCS#7 AND XMLDSIG

From: Donald Eastlake 3rd <dee3@torque.pothole.com>
Date: Mon, 24 Feb 2003 07:30:39 -0500 (EST)
To: w3c-ietf-xmldsig@w3.org
Message-ID: <Pine.LNX.4.44.0302240725420.14819-100000@netbusters.com>

I suppose if you wanted to you could argue that there is some sort of 
logical equivalence to an X509Data element with certificates and CRLs in 
it and a PKCS#7 structure but that is pretty feeble.

There is also the pkcs7SignedData element defined in 
draft-eastlake-xmldsig-uri-03.txt but that is quite explicitly not part 
of any W3C Recommendation.

Thanks,
Donald
======================================================================
 Donald E. Eastlake 3rd                       dee3@torque.pothole.com
 155 Beaver Street              +1-508-634-2066(h) +1-508-851-8280(w)
 Milford, MA 01757 USA                   Donald.Eastlake@motorola.com

On Mon, 24 Feb 2003, Christian Geuer-Pollmann wrote:

> Date: Mon, 24 Feb 2003 13:15:24 +0100
> From: Christian Geuer-Pollmann <geuer-pollmann@nue.et-inf.uni-siegen.de>
> To: DEMERJIAN <demerjia@enst.fr>, w3c-ietf-xmldsig@w3.org
> Cc: Christian Geuer-Pollmann <geuer-pollmann@nue.et-inf.uni-siegen.de>
> Subject: Re: QUESTION ABOUT PKCS#7 AND XMLDSIG
> Resent-Date: Mon, 24 Feb 2003 07:14:17 -0500 (EST)
> Resent-From: w3c-ietf-xmldsig@w3.org
> 
> 
> Hi Jacques,
> 
> from what I see, the document you cite is from July 1997. I don't know what 
> Mr. Kaliski and Mr. Kingdon want to express by saying "basis".
> 
> (1) XML Signature relies on X.509 certificates for representing --well-- 
> X.509 certificates.
> 
> (2) It does *not* use PKCS#7 as message syntax format.
> 
> (3) If you look at <http://www.w3.org/TR/xmldsig-core/#ref-PKCS1>, it cites 
> PKCS#1 as XML Signature uses RSA, but that's all.
> 
> Kind regards,
> Christian
> 
> --On Montag, 24. Februar 2003 11:28 +0100 DEMERJIAN <demerjia@enst.fr> 
> wrote:
> 
> > In the [Extensions and Revisions to PKCS #7 - Burton S. Kaliski Jr.,
> > Ph.D. and Kevin W. Kingdon 1 - An RSA Laboratories Technical Note - May
> > 13, 1997 - http://security.ece.orst.edu/koc/ece575/rsalabs/bulletn6.pdf ]
> > thay said that :
> >
> > { PKCS#7 has become the basis of S/MIME, SET, ....also PKCS#7 become a
> > basis for message security in systems as diverse as the W3C Digital
> > Signature Initiative, ...}.
> >
> > My question is : What they mean about basis  .
> >
> > Does xmlDSIG use pkcs#7? or xmlDSIG uses the same method (or logic) as
> > that of pkcs#7?  What is the relation between pkcs#7 and XMLDSIG?
> >
> > Thanks
> >
> > jacques
> 
> 
Received on Monday, 24 February 2003 07:30:43 GMT

This archive was generated by hypermail 2.2.0 + w3c-0.29 : Thursday, 13 January 2005 12:10:16 GMT