RE: Enveloped signatures and XPath from John Boyer on 2000-03-29 (w3c-ietf-xmldsig@w3.org from January to March 2000)

From: John Boyer <jboyer@PureEdge.com>
Date: Wed, 29 Mar 2000 11:10:44 -0800
To: <tgindin@us.ibm.com>, <gregor.karlinger@iaik.at>
Cc: "Peter Lipp" <Peter.Lipp@iaik.at>, "''IETF/W3C XML-DSig WG \(E-mail\) ' '" <w3c-ietf-xmldsig@w3.org>
Message-ID: <BFEDKCINEPLBDLODCODKAEDECCAA.jboyer@PureEdge.com>

Hi Tom,

The proposal is only to exclude Signature elements that are ancestor to the
DigestValue element whose content is being calculated.  This does not impact
one's ability to sign someone else's signature.

However, I'm sure this has been asked and answered negatively in the past.

John Boyer
Software Development Manager
PureEdge Solutions, Inc. (formerly UWI.Com)
Creating Binding E-Commerce
jboyer@PureEdge.com


-----Original Message-----
From: w3c-ietf-xmldsig-request@w3.org
[mailto:w3c-ietf-xmldsig-request@w3.org]On Behalf Of tgindin@us.ibm.com
Sent: Wednesday, March 29, 2000 10:57 AM
To: gregor.karlinger@iaik.at
Cc: Peter Lipp; ''IETF/W3C XML-DSig WG (E-mail) ' '
Subject: RE: Enveloped signatures and XPath


     Is the proposal here that all elements within a <Signature> should be
excluded unless they are the objects of a Reference?  If so, how would a
subsequent signer include the KeyInfo or SignatureValue from an enveloped
signature unless the original signer had attached an ID to them?

          Tom Gindin

Received on Wednesday, 29 March 2000 14:09:36 UTC