DSIG v1.1 External Links Review

• From: Martin, Cynthia E. <cemartin@mitre.org>
• Date: Tue, 15 Feb 2011 09:59:41 -0500
• To: "public-xmlsec@w3.org" <public-xmlsec@w3.org>
• CC: "Frederick.Hirsch@nokia.com" <Frederick.Hirsch@nokia.com>, "Martin, Cynthia E." <cemartin@mitre.org>
• Message-ID: <6A913BB6ED2E2C43AC275462A83E68490DE2323325@IMCMBX3.MITRE.ORG>

Fredrick

My comments for the DSIG v1.1 external links are below.  We can discuss at
todays meeting if necessary.

Cynthia

DSIG v1.1 External Links

1)      XMLDSIG-REQUIREMENTS and XMLSEC11-REQS both link to: [SOAP12-PART1]
Noah Mendelsohn; et al. SOAP Version 1.2 Part 1: Messaging Framework (Second Edition). 27 April 2007. W3C Recommendation. URL: http://www.w3.org/TR/2007/REC-soap12-part1-20070427/

2)      4.4.3.1 The URI Attribute

The optional Type attribute contains information about the type of object being signed after all ds:Reference transforms have been applied. This is represented as a URI. For example:

Type="http://www.w3.org/2000/09/xmldsig#Object"
Type=http://www.w3.org/2000/09/xmldsig#Manifest

I don't believe the Types should have links.

3)      4.4.3.2 The Reference Processing Model

(e.g., node-sets) links to http://www.w3.org/TR/xpath/

4)      4.4.3.2 The Reference Processing Model

The original edition of this specification [XMLDSIG-CORE] referenced the XPointer Candidate Recommendation [XPTR-XPOINTER-CR2001]

[XMLDSIG-CORE], [XPTR-XPOINTER-CR2001], [XPTR-XMLNS], and [XPTR-XPOINTER] all link to [SOAP12-PART1]

5)      4.5 The KeyInfo Element

Links open to nothing:

http://www.w3.org/2000/09/xmldsig#DSAKeyValue
http://www.w3.org/2000/09/xmldsig#RSAKeyValue
http://www.w3.org/2000/09/xmldsig#X509Data
http://www.w3.org/2000/09/xmldsig#PGPData
http://www.w3.org/2000/09/xmldsig#SPKIData
http://www.w3.org/2000/09/xmldsig#MgmtData
http://www.w3.org/2000/09/xmldsig#rawX509Certificate

6)      4.5.2.1 The DSAKeyValue Element

Link open to nothing:

Type=http://www.w3.org/2000/09/xmldsig#DSAKeyValue

7)      4.5.2.2 The RSAKeyValue Element

Link opens to nothing:

Type=http://www.w3.org/2000/09/xmldsig#RSAKeyValue

8)      4.5.4 The X509Data Element

Link opens to nothing:

Type=http://www.w3.org/2000/09/xmldsig#X509Data

9)      4.5.5 The PGPData Element

Link opens to nothing:

Type=http://www.w3.org/2000/09/xmldsig#PGPData

10)     4.5.6 The SPKIData Element

Link opens to nothing:

Type=http://www.w3.org/2000/09/xmldsig#SPKIData


11)     4.5.7 The MgmtData Element

Link opens to nothing:

Type=http://www.w3.org/2000/09/xmldsig#MgmtData

12)     4.6 The Object Element

Link opens to nothing:

Type=http://www.w3.org/2000/09/xmldsig#Object


13)     5.1 The Manifest Element

Link opens to nothing:

Type=http://www.w3.org/2000/09/xmldsig#SignatureProperties

14)     6.1 Algorithm Identifiers and Implementation Requirements
Links open to nothing:

http://www.w3.org/2000/09/xmldsig#sha1
http://www.w3.org/2000/09/xmldsig#base64
http://www.w3.org/2000/09/xmldsig#hmac-sha1
http://www.w3.org/2000/09/xmldsig#dsa-sha1
http://www.w3.org/2000/09/xmldsig#rsa-sha1
http://www.w3.org/2000/09/xmldsig#dsa-sha1
http://www.w3.org/2000/09/xmldsig#base64
http://www.w3.org/2000/09/xmldsig#enveloped-signature

Link opens to other document:

http://www.w3.org/2001/04/xmlenc#sha256, opens to http://www.w3.org/TR/2002/REC-xmlenc-core-20021210/Overview.html

http://www.w3.org/2001/04/xmldsig-more#sha384, opens to old reference http://www.w3.org/2001/04/xmldsig-more#sha384

http://www.w3.org/2001/04/xmlenc#sha512, opens to http://www.w3.org/TR/2002/REC-xmlenc-core-20021210/Overview.html

http://www.w3.org/2001/04/xmldsig-more#hmac-sha256, opens to old reference http://www.w3.org/2001/04/xmldsig-more#hmac-sha256

http://www.w3.org/2001/04/xmldsig-more#hmac-sha384, opens to old reference http://www.w3.org/2001/04/xmldsig-more#hmac-sha384

http://www.w3.org/2001/04/xmldsig-more#hmac-sha512, opens to old reference http://www.w3.org/2001/04/xmldsig-more#hmac-sha512

http://www.w3.org/2009/xmldsig11#dsa-sha256, opens to http://www.w3.org/2008/xmlsec/namespaces.html

15)     6.2.1 SHA-1

Links open to nothing:

http://www.w3.org/2000/09/xmldsig#sha1

16)     6.2.3 SHA-384

http://www.w3.org/2001/04/xmldsig-more#sha384, opens to old reference http://www.w3.org/2001/04/xmldsig-more#sha384


17)     6.3.1 HMAC

Links open to nothing:

http://www.w3.org/2000/09/xmldsig#hmac-sha1


http://www.w3.org/2001/04/xmldsig-more#hmac-sha256, opens to old reference http://www.w3.org/2001/04/xmldsig-more#hmac-sha256

http://www.w3.org/2001/04/xmldsig-more#hmac-sha384, opens to old reference http://www.w3.org/2001/04/xmldsig-more#hmac-sha384

http://www.w3.org/2001/04/xmldsig-more#hmac-sha512, opens to old reference http://www.w3.org/2001/04/xmldsig-more#hmac-sha512


18)     6.4.1 DSA

Links open to nothing:

http://www.w3.org/2000/09/xmldsig#dsa-sha1
http://www.w3.org/2000/09/xmldsig#dsa-sha1

http://www.w3.org/2009/xmldsig11#dsa-sha256, opens to old reference http://www.w3.org/2008/xmlsec/namespaces.html

I http://www.w3.org/2009/xmldsig11#dsa-sha256, opens to old reference http://www.w3.org/2008/xmlsec/namespaces.html


19)     6.4.2 RSA (PKCS#1 v1.5)

Links open to nothing:

http://www.w3.org/2000/09/xmldsig#rsa-sha1

http://www.w3.org/2001/04/xmldsig-more#rsa-sha256, opens to old reference http://www.w3.org/2001/04/xmldsig-more#rsa-sha256

http://www.w3.org/2001/04/xmldsig-more#rsa-sha384, opens to old reference http://www.w3.org/2001/04/xmldsig-more#rsa-sha384

http://www.w3.org/2001/04/xmldsig-more#rsa-sha512, opens to old reference  http://www.w3.org/2001/04/xmldsig-more#rsa-sha512


20)     6.4.3 ECDSA

http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1, opens to old reference  http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1

http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256, opens to old reference  http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256

http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384, opens to old reference  http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384

http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512, opens to old reference   http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512


21)     6.5 Canonicalization Algorithms

[UTF-16] opens to http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-11/Overview.html#bib-UTF-16 , but points to [SOAP12-PART1]

[XML-Japanese] opens to http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-11/Overview.html#bib-XML-Japanese, but points to [SOAP12-PART1]

22)     6.6.2 Base64

Links open to nothing:

http://www.w3.org/2000/09/xmldsig#base64

23)     6.6.4 Signature Transform

Links open to nothing:

http://www.w3.org/2000/09/xmldsig#enveloped-signature

24)     8. Security Considerations

[XMLDSIG-BESTPRACTICES] opens to http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-11/Overview.html#bib-XMLDSIG-BESTPRACTICES, but points to [SOAP12-PART1]

25)     9. Schema

Links open to nothing:

xmldsig-core-schema.xsd
xmldsig11-schema.xsd
xmldsig1-schema.xsd

26)     9.2 RNG Schema

[XMLSEC-RELAXNG], opens to http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-11/Overview.html#bib-XMLSEC-RELAXNG, but points to [SOAP12-PART1]

Received on Tuesday, 15 February 2011 15:00:15 UTC