- From: Frederick Hirsch <frederick.hirsch@nokia.com>
- Date: Fri, 21 Nov 2008 16:26:16 -0500
- To: ext Kelvin Yiu <kelviny@exchange.microsoft.com>
- Cc: Frederick Hirsch <frederick.hirsch@nokia.com>, "public-xmlsec@w3.org" <public-xmlsec@w3.org>
Kelvin has made an update to the 1.1 algorithms draft, and has also produced a red-line. I also suggested a change to the file names so the URLs have changed (sorry): http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-11/Overview.htm http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-11/xmldsig-ecc.xsd http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-11/Overview_diff.htm Thanks very much to Kelvin for completing this quickly. All - please review before the next call. regards, Frederick Frederick Hirsch, Nokia Chair XML Security WG On Nov 17, 2008, at 6:55 PM, ext Kelvin Yiu wrote: > FYI I have posted a working draft that incorporates new algorithms > (ECDSA and SHA2) into XMLDSIG. The URLs are not publicly visible yet > and Thomas and Frederick are helping with setting ACLs. > > http://www.w3.org/2008/xmlsec/Drafts/xmldsig/XML Signature Syntax > and Processing 1.1 draft.htm > http://www.w3.org/2008/xmlsec/Drafts/xmldsig/xmldsig-core-schema > 1.1.xsd > > Here is a summary of the changes: > > 1. Added a new ECKeyValue element to represent ECC public keys. The > new element is in the ds namespace, but there is a recommendation to > support a small profile of the ECDSAKeyValue element with named > curves in RFC 4050. > 2. Restructured the ExplicitParams element in 4050 to align with > the ASN.1 equivalent definition in ANSI X9.62 and RFC 3279. > 3. Added SHA256, SHA384 and SHA512 to list of digest, signature and > MAC algorithms. > 4. RSA-SHA256 and ECDSA-SHA256 are now REQUIRED > 5. Added a bunch of new references but not done yet. > > > Kelvin
Received on Friday, 21 November 2008 21:27:04 UTC