RE: XML Signature 1.1 and XML Encryption 1.1 interop testing from Martin, Cynthia E. on 2012-04-26 (public-xmlsec@w3.org from April 2012)

From: Martin, Cynthia E. <cemartin@mitre.org>
Date: Thu, 26 Apr 2012 20:19:33 +0000
To: "Frederick.Hirsch@nokia.com" <Frederick.Hirsch@nokia.com>
CC: "public-xmlsec@w3.org" <public-xmlsec@w3.org>, "tlr@w3.org" <tlr@w3.org>, "xmlsec@aleksey.com" <xmlsec@aleksey.com>, "Martin, Cynthia E." <cemartin@mitre.org>
Message-ID: <E58B24C1211DE1478F640EE4500E1B7D1841F6@IMCMBX03.MITRE.ORG>

Fredrick

You are correct, I am referring to the RFC, and the interop testing test reports you mentioned in your earlier email.   I wanted to ping the group and find out if anyone was working on that.  It would enhance the RFC and, when completed, the PAG recommendation.  Just some thoughts...

Regards, Cynthia Martin/MITRE

-----Original Message-----
From: Frederick.Hirsch@nokia.com [mailto:Frederick.Hirsch@nokia.com] 
Sent: Thursday, April 26, 2012 3:24 PM
To: Martin, Cynthia E.
Cc: Frederick.Hirsch@nokia.com; public-xmlsec@w3.org; tlr@w3.org; xmlsec@aleksey.com
Subject: Re: XML Signature 1.1 and XML Encryption 1.1 interop testing

Cynthia

As far as I know the PAG has not reached any recommendation or conclusion yet. Once a conclusion is reached it should be made public.

That said, I think you are referring to RFC 6090 which we reference from XML Signature 1.1. This RFC says in section 7.2 "KT-I is mathematically and functionally equivalent to ECDSA".

Are you asking whether this statement requires verification through interop testing? If so, that is probably a question for the RFC authors, but if the specifications are mathematically equivalent I'm not sure why it would be necessary.

regards, Frederick

Frederick Hirsch
Nokia

[1] ECC-ALGS, http://www.rfc-editor.org/rfc/rfc6090.txt

On Apr 26, 2012, at 2:33 PM, ext Martin, Cynthia E. wrote:

> Has any interoperability test been performed between ESDSA and KT-I.  it would more clearly demonstrate the recommendations from the PAG.
> 
> Regards, Cynthia Martin/MITRE
> 
> -----Original Message-----
> From: Frederick.Hirsch@nokia.com [mailto:Frederick.Hirsch@nokia.com] 
> Sent: Wednesday, April 25, 2012 11:16 AM
> To: xmlsec@aleksey.com
> Cc: Frederick.Hirsch@nokia.com; public-xmlsec@w3.org
> Subject: XML Signature 1.1 and XML Encryption 1.1 interop testing
> 
> The W3C XML Security working group is working to complete interop testing on XML Signature 1.1 and XML Encryption 1.1 [1].
> 
> Draft summaries of the current interop testing status, including testing that remains to be completed,  are available:
> 
> Draft XML Signature 1.1 Interop Test Report:  http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core1-interop/Overview.src.html
> 
> Draft XML Encryption 1.1 Interop Test Report: http://www.w3.org/2008/xmlsec/Drafts/xmlenc-core1-interop/Overview.src.html
> 
> If you are interested in participating in interop testing please let us know.
> 
> There is also a stable set of XML Security 2.0 specifications, see http://www.w3.org/2008/xmlsec/wiki/PublicationStatus#20
> 
> regards, Frederick
> 
> Frederick Hirsch, Nokia
> Chair XML Security WG
> 
> [1]  http://www.w3.org/2008/xmlsec/wiki/PublicationStatus
> 
> For tracker, ACTION-865

Received on Thursday, 26 April 2012 20:20:05 UTC