Please confirm agreement with resolution of SHA-384 XML Signature 1.1 Last Call comment from Frederick Hirsch on 2010-05-12 (public-xmlsec@w3.org from May 2010)

From: Frederick Hirsch <frederick.hirsch@nokia.com>
Date: Wed, 12 May 2010 11:45:33 -0400
To: Makoto MURATA <eb2m-mrt@asahi-net.or.jp>
Cc: Frederick Hirsch <frederick.hirsch@nokia.com>, XMLSec WG Public List <public-xmlsec@w3.org>
Message-Id: <164ABED6-16C0-4F67-8FB9-6C4FFED47E8D@nokia.com>

Makoto

As a Last Call comment on XML Signature 1.1 you noted an ambiguity  
related to the SHA384 URI [1]. This was noted as a WG issue, ISSUE-191  
[2] and also recorded as a Last Call issue (LC-2376) [3].

In order to maintain backward compatibility the WG resolved the issue  
by updating the document to consistently use http://www.w3.org/2001/04/xmldsig-more#sha384 
  as proposed [4] and minuted [5].

We included you in a message on March noting the resolution, but I  
have not heard any response [6]. I assume this means this resolution  
is acceptable, but for the record, can you please confirm that the   
resolution is acceptable to you?  The latest Editors Draft has this  
correction [7].

Thank you.

regards, Frederick

Frederick Hirsch, Nokia
Chair XML Security WG


[1] http://lists.w3.org/Archives/Public/public-xmlsec/2010Mar/0052.html

[2] http://www.w3.org/2008/xmlsec/track/issues/191

[3] http://www.w3.org/2006/02/lc-comments-tracker/42458/WD-xmldsig-core1-20100204/2376

[4] http://lists.w3.org/Archives/Public/public-xmlsec/2010Mar/0074.html

[5] http://www.w3.org/2010/03/09-xmlsec-minutes.html#item03

[6] http://lists.w3.org/Archives/Public/public-xmlsec/2010Mar/0081.html

[7] http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-11/Overview.html#sec-SHA-384

Received on Wednesday, 12 May 2010 15:47:03 UTC