W3C home > Mailing lists > Public > xml-encryption@w3.org > July 2001

Re: Questions on XML Encryption Syntax and Processing Revision 1.29

From: Joseph M. Reagle Jr. <reagle@w3.org>
Date: Mon, 30 Jul 2001 18:57:09 -0400
Message-Id: <>
To: "Chng Bee Tiong" <zmzmz@singnet.com.sg>
Cc: <xml-encryption@w3.org>, "Donald Eastlake" <dee3@torque.pothole.com>, <lde008@dma.isg.mot.com>, "Jim Schaad (Exchange)" <jimsch@EXCHANGE.MICROSOFT.com>
At 15:26 7/30/2001, Chng Bee Tiong wrote:
>1. In few places of the draft spec, there is mention of a Type attribute in 
>EncryptedKey element.
>     Where is this defined in the schema provided?

   Schema Definition:
   <element name='EncryptedData' type='xenc:EncryptedDataType'/>
   <complexType name='EncryptedDataType'>
       <extension base='xenc:EncryptedType'>
         <attribute name='Type' type='anyURI' use='optional'/>

>  2. Where is the definition on OAEPparamsType?

I defer to Don Eastlake who's the editor of that section.

>3. How are ds:DigestMethod and ds:DigestValue related to section 5.6?
>     I don't suppose it is the CMS checksum thing, right?
>     So how are they going to be used?


They provided integrity of the plaintext prior to encryption, Schaad had an 
action item to propose their removal but he hasn't done so (and he mentioned 
that if he didn't do it last week, it wouldn't be done?)

>  4. Consider <Person Gender="Male"/> and 
> <Person><Gender>Male</Gender></Person>.
>     I can encrypt the "Gender" element but not the "Gender" attribute.
>     What is the rationale?
>     If I can encrypt the "Person" element inclusive of the "Gender" 
> attribute", why is it that I cannot encrypt just the "Gender" attribute?

This one has been discussed a lot on the archives, but a while back.
See http://www.w3.org/TR/xml-encryption-req#sec-design-principles-scope 

Joseph Reagle Jr.                 http://www.w3.org/People/Reagle/
W3C Policy Analyst                mailto:reagle@w3.org
IETF/W3C XML-Signature Co-Chair   http://www.w3.org/Signature
W3C XML Encryption Chair          http://www.w3.org/Encryption/2001/
Received on Monday, 30 July 2001 18:57:18 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 20:32:00 UTC