- From: Ed Simon <edsimon@xmlsec.com>
- Date: Tue, 19 Jan 2010 17:31:53 -0500
- To: XMLSec WG Public List <public-xmlsec@w3.org>
During this morning's teleconference call, reference was made of desire for a straight-forward, simple algorithm for canonicalizing the <SignedInfo> element. As promised, here is the link to my "XML Signature 2.0 Strawman Proposal" presentation from 2007 that describes, inter alia, canonicalizing the <SignedInfo> element in XML Signature 2.0: http://www.w3.org/2007/xmlsec/f2f-2007-11-08/XML-Signature-Proposal-2.pdf The <SignedInfo> canonicalization discussion starts at slide 14. As you will note, the <SignedInfo> in the slide deck is different than the 1.x <SignedInfo> or the 2.0 <SignedInfo> -- this is because the presentation suggests a significantly reorganized XML Signature. Nonetheless, the principles for canonicalization of <SignedInfo> presented therein maybe useful. As Scott has pointed out, it is not clear from the presentation how wildcard XML elements such as those in <SignatureMethod> would be handled. In the strawman proposal, <SignatureMethod> is no longer within <SignedInfo> but within a <Signers> element which lists one more signers and their signature methods. Ed -- ======================================== Ed Simon 613-726-9645 edsimon@xmlsec.com
Received on Tuesday, 19 January 2010 22:39:11 UTC