- From: John Kemp <john.kemp@nokia.com>
- Date: Mon, 05 Sep 2005 15:32:29 +0200
- To: public-ws-addressing-comments@w3.org
Hello, I notice that WS-Addressing [1] has security recommendations that include the signing of elements by those producing EPRs (and message addressing properties). Such signing usually requires the presence of an identifying attribute on each signed element. I note that WS-Addressing does not define any such attribute, but relies on a wildcard for this and other attribute definitions. This seems to require that users of WS-Addressing must define the use of such an attribute themselves, prior to being able to implement the security considerations recommended by WS-A. This implies that one cannot use the basic EPR and MAP definitions directly from the WS-Addressing specification (if one wishes to sign EPRs and be interoperable with anyone else.) In order to aid interoperability of this specification, and implementation of the security considerations within, would it be possible to specify the use of an ID attribute within the WS-Addressing specification? Perhaps best would be to use the recommendation specified in the xml:id specification [2]. Regards, - JohnK John Kemp Nokia Corp. [1] http://www.w3.org/TR/2005/CR-ws-addr-core-20050817/ [2] http://www.w3.org/TR/xml-id/
Received on Tuesday, 6 September 2005 04:46:45 UTC