- From: Rich Salz <rsalz@datapower.com>
- Date: Thu, 2 Jan 2003 20:20:26 -0500 (EST)
- To: David Orchard <dorchard@bea.com>
- cc: "xml-dist-app@w3.org" <xml-dist-app@w3.org>, "www-ws-arch@w3.org" <www-ws-arch@w3.org>
I would strongly encourage you to get at least one cryptographer
actively involved in the discussion before this goes much further.
As a "short list" of contributors, I would recommend one of the
authors (or original submittors) from the XMLDSIG or XENC documents.
On a more personal note, I am concerned about the "how can we make
DSIG and XENC work with the infoset" tone. It's understandable, given
the authors, but I want to emphasize that cryptography (at least as
sed in the DSIG and XENC specs) depends on an octet stream -- i.e.,
a serialization -- and anything other than that is a complete non-
starter.
For completeness (and perhaps also to label myself Cassandra :),
it should be mentioned that this issue was raised back [1] back in
June, 2001, when the decision to "go Infoset" was first made, and in
[2] February, 2002, I proposed a canonicalization solution. I lost
the battle for #1 and #2 was fairly quickly ruled out of scope.
/r$
[1] http://lists.w3.org/Archives/Public/xml-dist-app/2001Jun/0208.html
[2] http://lists.w3.org/Archives/Public/xml-dist-app/2002Feb/0266.html
Received on Thursday, 2 January 2003 20:20:27 UTC