- From: Hiroshi Maruyama <MARUYAMA@jp.ibm.com>
- Date: Tue, 21 Sep 1999 17:33:56 +0900
- To: Greg Whitehead <gwhitehead@signio.com>
- cc: w3c-ietf-xmldsig@w3.org, "Kento Tamura" <TKENT@jp.ibm.com>
Greg,
See "XML Security Suite" available from IBM's alphaWorks
(http://www.alphaworks.ibm.com/). It contains a reference implementation (with
complete source code) along with a list of digest values of James Clark's test
cases.
Hiroshi
--
Hiroshi Maruyama
Manager, Network Applications, Tokyo Research Laboratory
+81-462-73-4576, maruyama@jp.ibm.com
Also Associate Professor, Dept. of Computer Science, Tokyo Institute of
Technology
+81-3-5734-3953, maruyama@cs.titech.ac.jp
From: Greg Whitehead <gwhitehead@signio.com> on 99/09/21 05:15
To: "'w3c-ietf-xmldsig@w3.org'" <w3c-ietf-xmldsig@w3.org>
cc: (bcc: Hiroshi Maruyama/Japan/IBM)
Subject: XHASH / DOMHASH
I've seen several references to an XHASH spec, but can't find it. Any
pointers would be appreciated.
In the meantime, I'm looking at DOMHASH. The DOMHASH spec defers to DOM for
normalization, but I can't find any specific recomendations in the DOM spec.
The closest I've found is section 1.1.6 (Case sensitivity in the DOM) where
we find:
> As such, the DOM assumes that any normalizations will
> take place in the processor, before the DOM structures
> are built.
I've seen reference to a W3C WG on XML Canonicalization, and expect that all
questions will eventually be answered there, but what are people doing in
the meantime? Are there any test cases that I could use to test a DOMHASH
implementation for conformance to the current spec?
Thanks,
-Greg
--
Greg Whitehead
Chief Scientist
Signio, Inc.
1600 Bridge Parkway, Suite 201
Redwood City, CA 94065
650-622-2250
650-622-2201 (fax)
gwhitehead@signio.com
http://www.signio.com
Received on Tuesday, 21 September 1999 05:49:04 UTC