- From: Donald E. Eastlake 3rd <dee3@torque.pothole.com>
- Date: Fri, 08 Oct 1999 00:46:21 -0400
- To: w3c-ietf-xmldsig@w3.org
- cc: dee3@us.ibm.com
The latest draft tweak required the SignedInfo c14nAlg element to be present. The more I think about this the more I think that rather than being mandatory, this element should just be eliminated. We know and are specifying the syntax and processing of SignedInfo. I see no reason not to just specify thorough canonicalization, such as "DOM Canon". True, this is not necessary in some benign environments. In some static binary clean environments, you might even be able to get away with Null canonicalization of SignedInfo. But we know and are specifying enough about SignedInfo that we can assure that thorough canonicalization will not hurt Signatures now or in the future. And such canonicalization might be necessary to make some signatures robust enough to not break when they are processed through more obstreperous environments. In other words, I don't see enough of a downside to make it worth the additional complexity of having to specify the SignedInfo c14nAlg. Thanks, Donald ===================================================================== Donald E. Eastlake 3rd +1 914-276-2668 dee3@torque.pothole.com 65 Shindegan Hill Road, RR#1 +1 914-784-7913(work) dee3@us.ibm.com Carmel, NY 10512 USA
Received on Friday, 8 October 1999 00:46:24 UTC