W3C home > Mailing lists > Public > www-xkms@w3.org > August 2004

XKRSS Service Announcement

From: tommy lindberg <lindberg_tommy@hotmail.com>
Date: Sat, 07 Aug 2004 17:32:45 +0000
To: www-xkms@w3.org
Message-ID: <BAY12-F5fvOfhWzy5Jl0002bca3@hotmail.com>


As part of my XKMS implementation effort I am announcing the availability
of three XKRSS service endpoints located at:

http://62.77.172.83:4080/xkrss/soap12 SOAP 1.2 binding
http://62.77.172.83:4080/xkrss/soap11 SOAP 1.1 binding
http://62.77.172.83:4080/xkrss/plain-http XKRSS messages directly over HTTP

The following applies to all three endpoints:

- Responds to RegisterRequest, ReissueRequest, RecoverRequest, 
RevokeRequest,
  StatusRequest and PendingRequest

- Synchronous, Two-phase and Asynchronous exchanges are supported; the
  two-phase exchange takes precedence when both two-phase and
  asynchronous exchanges are indicated.

- Respects requests for OpaqueClientData and RequestSignatureValue by
  copying these quantities from the request into the result.

- The shared secret distribution is handled through an 'enrollment' web 
appication
  located at http://62.77.172.83:4080/enrollment

- Results are signed using an RSA XKMS responder key.

- The notification phase of the asynchronous exchange is currently not 
required
  allowing results to be picked up (through PendingRequest) immediately 
following
  the initial request.

- The result messages produced by these services are not formatted with easy 
human
  consumption in mind.

- Supports registration of client generated DSA and RSA keypairs and service 
generated
  RSA keypairs.

- Does not allow duplicate registration's of the same key.

- Recovering a service generated keypair does not affect the status of same.

- Operations conducted on the XKRSS endpoints are reflected in the XKISS 
service.
  E.g. registration of a keypair will show up in a subsequent Locate and 
Validate.

- A registration request indicating a binding to an X.509 certificate 
requires an UseKeyWith
  element with an Application attribute equal to 'urn:ietf:rfc2459' and an 
Identifier attribute
  containing a distinguished name.

The XKMS schema used is the one located at
http://www.w3.org/2001/XKMS/Drafts/XKMS-PR-DRAFT/Schemas/xkms.xsd

Feedback will be appreciated.

Regards
Tommy

tommy.lindberg@acm.org

_________________________________________________________________
STOP MORE SPAM with the new MSN 8 and get 2 months FREE* 
http://join.msn.com/?page=features/junkmail
Received on Saturday, 7 August 2004 17:33:16 UTC

This archive was generated by hypermail 2.3.1 : Wednesday, 5 February 2014 07:14:01 UTC