- From: <Frederick.Hirsch@nokia.com>
- Date: Mon, 8 Aug 2011 19:07:38 +0000
- To: <cantor.2@osu.edu>
- CC: <Frederick.Hirsch@nokia.com>, <public-xmlsec@w3.org>
Received on Monday, 8 August 2011 19:08:26 UTC
I agree which is why I flagged it. The 2.0 note in 7.3 The RetrievalMethod Element says: [[ In XML Signature 2.0, Transforms are not allowed in RetrievalMethod. Use of dsig11:KeyInfoReference is encouraged instead, see section 7.10 The dsig11:KeyInfoReference Element<http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-20/#sec-KeyInfoReference>. ]] We should disallow RetrievalMethod completely in 2.0 in non-compatibility mode. regards, Frederick Frederick Hirsch Nokia On Aug 8, 2011, at 3:03 PM, ext Cantor, Scott E. wrote: On 8/8/11 2:52 PM, "Frederick.Hirsch@nokia.com<mailto:Frederick.Hirsch@nokia.com>" <Frederick.Hirsch@nokia.com<mailto:Frederick.Hirsch@nokia.com>> wrote: No change was needed for 2.0 as it already has similar text, and also disallows Transform child within RetrievalMethod (though I'm not sure why RetrievalMethod isn't disallowed in non-compatibility mode) Did we actually disallow that? If we did, the element is close to useless, so we might as well just make it a MUST NOT. At the very least, it's going to confuse things. -- Scott
Received on Monday, 8 August 2011 19:08:26 UTC