<SignedInfo> canonicalization in XML Signature 2.0 Strawman Proposal

During this morning's teleconference call, reference was made of
desire for a straight-forward, simple algorithm for canonicalizing the
<SignedInfo> element. As promised, here is the link to my "XML
Signature 2.0 Strawman Proposal" presentation from 2007 that
describes, inter alia, canonicalizing the <SignedInfo> element in XML
Signature 2.0:

http://www.w3.org/2007/xmlsec/f2f-2007-11-08/XML-Signature-Proposal-2.pdf

The <SignedInfo> canonicalization discussion starts at slide 14. As
you will note, the <SignedInfo> in the slide deck is different than
the 1.x <SignedInfo> or the 2.0 <SignedInfo> -- this is because the
presentation suggests a significantly reorganized XML Signature.
Nonetheless, the principles for canonicalization of <SignedInfo>
presented therein maybe useful.

As Scott has pointed out, it is not clear from the presentation how
wildcard XML elements such as those in <SignatureMethod> would be
handled. In the strawman proposal, <SignatureMethod> is no longer
within <SignedInfo> but within a <Signers> element which lists one
more signers and their signature methods.

Ed

-- 
========================================
Ed Simon
613-726-9645
edsimon@xmlsec.com 

Received on Tuesday, 19 January 2010 22:39:11 UTC