RE: Revised syntax proposal

Barb,

> Barb Comments:
>
> I have three problems with this:
>
> (1) KeyInfo in PKIX means the algorithm and the key. What
> you're talking
> about is along the lines of SignerInfo in CMS (where the set,
> of course may
> be 0). If it has to survive, then at let's change the name.
>
> (2) For many signed XML applications, there are going to be only
> pre-negotiated keys, so this KeyInfo can't be mandatory.
>
> (3) My strongest objection though is that your KeyInfo
> attaches semantics to
> the signature (or presumes that a cert does) which is outside
> the scope of
> this wg.

 Mine:

(1) Recall, KeyInfo used to be the pair OriginatorInfo and RecipientInfo.
This has been changed in Oslo. At that time, it was not question about
changing the semantics of these fields - just to group them together and
change the name.

(2) Though the keys can be pre-negotiated (e.g. AADS), somewhere you need to
identify the signer in order to retrieve his key. This can be dealed with
either at the application level (which passes the key per value to the
verification engine) or at the signature level (which calls out some
provider to retrieve the key).

(3) NO! it only presumes that unambiguous identification of the signing
authority is important. How strong is a signature if one can substitute the
signing authority by another without being detected. Although such tampering
is pretty much limited to a single individual/organization that uses a same
key for a plurality of purposes. But, there are many circumstances where the
authority primes over the identity, and this is pretty much why many argue
against identity certificates and promote attribute certificates. The key is
not necessarily everything - The identity as well.

Richard D.

Received on Friday, 13 August 1999 18:09:28 UTC