- From: Sean Mullan <Sean.Mullan@Sun.COM>
- Date: Tue, 17 Feb 2009 08:11:11 -0500
- To: Scott Cantor <cantor.2@osu.edu>
- Cc: "'Thomas Roessler'" <tlr@w3.org>, "'XMLSec WG'" <public-xmlsec@w3.org>
Scott Cantor wrote: > Thomas Roessler wrote on 2009-02-16: >> I can't quite tell whether these are intended to identify raw, binary >> data (which, in case we're referring to something that lives in the >> same XML document, would probably have to be base64 decoded through a >> ds:Transform), or whether it's intended for base64 encoded versions of >> the raw data. > > I believe it's intended to be raw, unencoded DER. That's how I always > interpreted it. > > -- Scott I agree. And the only examples I have seen always use an external reference. For example: http://svn.apache.org/viewvc/xml/security/trunk/data/ie/baltimore/merlin-examples/merlin-xmldsig-twenty-three/signature-retrievalmethod-rawx509crt.xml?revision=351040&view=markup --Sean
Received on Tuesday, 17 February 2009 13:11:48 UTC