- From: Edgar, Gerald <gerald.edgar@boeing.com>
- Date: Mon, 22 Sep 2008 13:49:48 -0700
- To: "XMLSec WG Public List" <public-xmlsec@w3.org>
There are a number of issues that have notes in them indicating they are requirements. We need to group these appropriately and remove any duplicates. We also need to make sure that they either addressed in the requirements or a decision is made that they are not requirements. I have retained the link to the tracking page of each issue so that it is easy to determine the context. I think it is appropriate to discuss this and come to a resolution so these can be addressed and the associated issues can be closed. Gerald Edgar ------------------------------------------ ISSUE-3 <http://www.w3.org/2008/xmlsec/track/issues/3> OPEN Can we limit the generality of subsetting to reduce complexity, e.g. XPath 2.0 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-4 <http://www.w3.org/2008/xmlsec/track/issues/4> OPEN Need to allow transforms to go between octets and nodeset 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-5 <http://www.w3.org/2008/xmlsec/track/issues/5> OPEN Which selections from subtree are required 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-6 <http://www.w3.org/2008/xmlsec/track/issues/6> OPEN Is there requirement to canonicalize/sign exi representation 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) >>>>>>>>>>>>>>> Digital Signature Issues <<<<<<<<<<<<<<<< ISSUE-9 <http://www.w3.org/2008/xmlsec/track/issues/9> OPEN Review WS-I BSP constraints on DSig 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) --> This seems to address issues of digital signature with WS-I BSP ISSUE-12 <http://www.w3.org/2008/xmlsec/track/issues/12> CLOSED What would it take for XML Signature to be usable for Mail 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) --> This seems to address issues of digital signature with e-mail - ISSUE-13 <http://www.w3.org/2008/xmlsec/track/issues/13> OPEN What would it take to use XML Signature for structured non-XML content 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-19 <http://www.w3.org/2008/xmlsec/track/issues/19> OPEN Placement of signature relative to signing or verification, different placement? 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-27 <http://www.w3.org/2008/xmlsec/track/issues/27> OPEN Profile XML Signature spec to disallow removal of used namespace nodes from nodesets 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-32 <http://www.w3.org/2008/xmlsec/track/issues/32> OPEN How to identify profile, when, where. Not in signature but earlier? 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-33 <http://www.w3.org/2008/xmlsec/track/issues/33> OPEN Schema not validating when enveloped signature added and not included in original doc schema 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) >>>>>>>>>>>>>>>>> </ Digital Signature Issues > <<<<<<<<<<<<<<<<<<<< >>>>>>>>>>>>>>>>>>> < Streaming Requirements > <<<<<<<<<<<<<<<<<< ISSUE-15 <http://www.w3.org/2008/xmlsec/track/issues/15> OPEN Minimal caching to support streaming 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-16 <http://www.w3.org/2008/xmlsec/track/issues/16> OPEN Backward reference for streaming - don't know what is referenced, algs 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) >>>>>>>>>>>>>>>>>>> </ Streaming Requirements > <<<<<<<<<<<<<<<<<< ISSUE-17 <http://www.w3.org/2008/xmlsec/track/issues/17> OPEN Placement of KeyInfo relative to SIgnedInfo 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-18 <http://www.w3.org/2008/xmlsec/track/issues/18> OPEN Data between algorithm info and digest? 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-20 <http://www.w3.org/2008/xmlsec/track/issues/20> OPEN Transform model should support streaming, filtering model 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-21 <http://www.w3.org/2008/xmlsec/track/issues/21> OPEN Arbitrary selection from nodeset vs XPath expressions without backward references, traversal and navigation 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-22 <http://www.w3.org/2008/xmlsec/track/issues/22> OPEN Requirement to validate xml before application processing, signature processing, thus need to read entire document before processing, thus not true streaming 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-23 <http://www.w3.org/2008/xmlsec/track/issues/23> CLOSED Requirement for NodeSets 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-24 <http://www.w3.org/2008/xmlsec/track/issues/24> OPEN Requirement for NodeSets 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-25 <http://www.w3.org/2008/xmlsec/track/issues/25> OPEN Web services profile 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-26 <http://www.w3.org/2008/xmlsec/track/issues/26> OPEN Require well formed XML between transforms 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-28 <http://www.w3.org/2008/xmlsec/track/issues/28> OPEN QNames? [Qualified names?] 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) > [from meeting record] exclusive c14n doesn't solve anything, > can get namespace declarations multiple times > shouldn't allow removal of used namespace nodes ISSUE-29 <http://www.w3.org/2008/xmlsec/track/issues/29> OPEN Able to run transforms in parallel (in general parallelism related to pipelining) 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-30 <http://www.w3.org/2008/xmlsec/track/issues/30> OPEN Limit XPath Filter transform to be first transform or to not use parent axis 2008-07-17 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-37 <http://www.w3.org/2008/xmlsec/track/issues/37> OPEN Simplified c14n for signing versus more general c14n, e.g. not produce compliant xml document 2008-07-29 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-38 <http://www.w3.org/2008/xmlsec/track/issues/38> OPEN Profile for signature processing for non-XML or for contrained XML requirements 2008-07-29 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-39 <http://www.w3.org/2008/xmlsec/track/issues/39> OPEN Namespace Undeclarations and canonicalization 2008-07-29 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-40 <http://www.w3.org/2008/xmlsec/track/issues/40> OPEN Appropriate signing/verification position in EXI workflow, expectations and correctness review 2008-07-29 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-41 <http://www.w3.org/2008/xmlsec/track/issues/41> OPEN Signing compact EXI representation of XML - is that reproducable for verification 2008-07-29 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-42 <http://www.w3.org/2008/xmlsec/track/issues/42> OPEN Backward and forward compatibility 2008-07-29 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-44 <http://www.w3.org/2008/xmlsec/track/issues/44> OPEN Requirement to enable signatures on documents that do not anticipate signatures in the schema 2008-07-29 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-48 <http://www.w3.org/2008/xmlsec/track/issues/48> DerivedKeyType OPEN No support for derived keys in XML Dsig, XML Enc 2008-08-28 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-49 <http://www.w3.org/2008/xmlsec/track/issues/49> DerivedKeyType CLOSED No support for derived keys in XML Dsig, XML Enc 2008-08-28 Rqmts (XML Signature and Canonicalization V Next Requirements) ISSUE-51 <http://www.w3.org/2008/xmlsec/track/issues/51> scantor OPEN Effects of schema normalization on signature verification 2008-09-02 Rqmts (XML Signature and Canonicalization V Next Requirements) ---------------------------------------- Gerald Edgar, CISSP Enterprise Architecture & Information Security
Received on Monday, 22 September 2008 20:50:42 UTC