Re: XMLDSIG RSA signatures

At 17:31 8/29/2000 +0100, merlin wrote:
 >Algorithm URIs can and should be used to solve the versioning problem.
 >Deriving meaning from an OID would make XMLDSIG _really_ dependent upon
 >an ASN.1 parser. Requiring that a crypto toolkit can process the OID
 >within a signature is only to be expected, and is an orthogonal issue.

And we control what [1] means, consequently does anyone oppose Merlin's
first option [2]?

1) The signature may be either an encrypted ASN.1 blob (PKCS#1)
or an encrypted raw digest (like W?TLS)

Joseph Reagle Jr.   
W3C Policy Analyst      
IETF/W3C XML-Signature Co-Chair

Received on Tuesday, 29 August 2000 13:08:47 UTC