- From: <muraw3c@attglobal.net>
- Date: Sat, 16 Dec 2000 21:58:17 +0900 (JST)
- To: <w3c-ietf-xmldsig@w3.org>, muraw3c@attglobal.net
Joseph, > Thanks! Plus given I know now how to combine entities with other content You are welcome. > properly <smile> we could remove a level of indirection (External) and have > very good equivalence with the schema structures! (Right?) Yes, I think that this approach improves readability. > See [1], excerpts: > > [1] http://www.w3.org/Signature/Drafts/xmldsig-core/xmldsig-core-schema.dtd > > <!ENTITY % KeyInfo.ANY ''> > <!ENTITY % KeyValue.ANY ''> > ... > <!ELEMENT KeyInfo (#PCDATA|KeyName|KeyValue|RetrievalMethod| > X509Data|PGPData|MgmtData %KeyInfo.ANY;)* > > <!ATTLIST KeyInfo > Id ID #IMPLIED > > ... > <!ELEMENT KeyValue (#PCDATA|DSAKeyValue|RSAKeyValue %KeyValue.ANY;)* > > I am comparing the XML Schema version and your latest DTD version. I have some more questions and comments. 1) The schema version allows KeyInfo to contain SPKIData, but the DTD does not. 2) What is SPKIData? This exists only in the XML Schema version. 3) The DTD version does not allow customization of contents of PGPData. 4) In the XML Schema version, KeyValue can have only one DSAKeyValue, but can have more than two external key values. Is this really intended? 5) When <any> is used in the XML Schema version, mixed="true" is sometimes specified and sometimes not. Again, is this really intended? - Not Specified - CanonicalizationMethod - SignatureMethod - Transform - DigestMethod - Keyinfo - Specified - KeyValue - Object - SignatureProperty By the way, my motivation is to make sure that RELAX can handle XML Digistal Signature without any problems. Just in case you (a member of the W3C team :-) is interested, here is a first cut. <?xml version="1.0" encoding="UTF-8"?> <module moduleVersion="0.1" relaxCoreVersion="1.0" targetNamespace="http://www.w3.org/2000/09/xmldsig#" xmlns="http://www.xml.gr.jp/xmlns/relaxCore"> <interface> <export label="Signature"/> <import label="Method.External"/> <import label="Transform.External"/> <import label="KeyInfo.External"/> <import label="KeyValue.External"/> <import label="PGPData.External"/> <import label="Object.External"/> <import label="SignatureProperty.External"/> </interface> <!-- <simpleType name="CryptoBinary"> <restriction base="binary"> <encoding value="base64"/> </restriction> </simpleType> --> <tag name="Signature"> <attribute name="Id" type="ID"/> </tag> <elementRule role="Signature"> <sequence> <ref label="SignedInfo"/> <ref label="SignatureValue"/> <ref label="KeyInfo" occurs="?"/> <ref label="Object" occurs="*"/> </sequence> </elementRule> <tag name="SignatureValue"> <attribute name="Id" type="ID"/> </tag> <elementRule role="SignatureValue" type="string"/> <!-- CryptoBinary"/> <tag name="SignedInfo"> <attribute name="Id" type="ID"/> </tag> <elementRule role="SignedInfo"> <sequence> <ref label="CanonicalizationMethod"/> <ref label="SignatureMethod"/> <ref label="Reference" occurs="+"/> </sequence> </elementRule> <tag name="CanonicalizationMethod"> <attribute name="Algorithm" required="true" type="uriReference"/> </tag> <elementRule role="CanonicalizationMethod"> <mixed> <choice occurs="*"> <importedLabelRef label="Method.External"/> <ref label="HMACOutputLength"/> </choice> </mixed> </elementRule> <tag name="SignatureMethod"> <attribute name="Algorithm" required="true" type="uriReference"/> </tag> <elementRule role="SignatureMethod"> <mixed> <choice occurs="*"> <importedLabelRef label="Method.External"/> <ref label="HMACOutputLength"/> </choice> </mixed> </elementRule> <tag name="Reference"> <attribute name="Id" type="ID"/> <attribute name="URI" type="uriReference"/> <attribute name="Type" type="uriReference"/> </tag> <elementRule role="Reference"> <sequence> <ref label="Transforms" occurs="?"/> <ref label="DigestMethod"/> <ref label="DigestValue"/> </sequence> </elementRule> <tag name="Transforms"/> <elementRule role="Transforms"> <ref label="Transform" occurs="+"/> </elementRule> <tag name="Transform"> <attribute name="Algorithm" required="true" type="uriReference"/> </tag> <elementRule role="Transform"> <mixed> <choice occurs="*"> <importedLabelRef label="Transform.External"/> <element name="XSLT" type="string"/> <!-- should be an xsl:stylesheet element --> <element name="XPath" type="string"/> </choice> </mixed> </elementRule> <tag name="DigestMethod"> <attribute name="Algorithm" required="true" type="uriReference"/> </tag> <elementRule role="DigestMethod"> <mixed> <choice occurs="*"> <importedLabelRef label="Method.External"/> <ref label="HMACOutputLength"/> </choice> </mixed> </elementRule> <tag name="DigestValue"/> <elementRule role="DigestValue" type="string"/> <!-- CryptoBinary"/> <tag name="KeyInfo"> <attribute name="Id" type="ID"/> </tag> <elementRule role="KeyInfo"> <mixed> <choice occurs="*"> <importedLabelRef label="KeyInfo.External"/> <element name="KeyName" type="string"/> <ref label="KeyValue"/> <ref label="RetrievalMethod"/> <ref label="X509Data"/> <ref label="PGPData"/> <element name="MgmtData" type="string"/> </choice> </mixed> </elementRule> <tag name="KeyValue"/> <elementRule role="KeyValue"> <mixed> <choice> <importedLabelRef label="KeyValue.External" occurs="*"/> <ref label="DSAKeyValue"/> <ref label="RSAKeyValue"/> </choice> </mixed> </elementRule> <tag name="RetrievalMethod"> <attribute name="URI" required="true" type="uriReference"/> <attribute name="Type" type="uriReference"/> </tag> <elementRule role="RetrievalMethod"> <ref label="Transforms" occurs="?"/> </elementRule> <tag name="X509Data"/> <elementRule role="X509Data"> <choice> <choice occurs="+"> <ref label="X509IssuerSerial"/> <element name="X509SKI" type="string"/> <!-- CryptoBinary"/> <element name="X509SubjectName" type="string"/> <element name="X509Certificate" type="string"/> <!-- CryptoBinary"/> </choice> <element name="X509CRL" type="string"/> <!-- CryptoBinary"/> </choice> </elementRule> <tag name="X509IssuerSerial"/> <elementRule role="X509IssuerSerial"> <sequence> <element name="X509IssuerName" type="string"/> <element name="X509SerialNumber" type="integer"/> </sequence> </elementRule> <tag name="PGPData"/> <elementRule role="PGPData"> <choice> <importedLabelRef label="PGPData.External"/> <sequence> <element name="PGPKeyID" type="string"/> <element name="PGPKeyPacket" type="string"/> <!-- CryptoBinary"/> </sequence> </choice> </elementRule> <tag name="Object"> <attribute name="Id" type="ID"/> <attribute name="MimeType" type="string"/> <attribute name="Encoding" type="uriReference"/> </tag> <elementRule role="Object"> <mixed> <choice occurs="*"> <importedLabelRef label="Object.External"/> <ref label="Signature"/> <ref label="SignatureProperties"/> <ref label="Manifest"/> </choice> </mixed> </elementRule> <tag name="Manifest"> <attribute name="Id" type="ID"/> </tag> <elementRule role="Manifest"> <ref label="Reference" occurs="+"/> </elementRule> <tag name="SignatureProperties"> <attribute name="Id" type="ID"/> </tag> <elementRule role="SignatureProperties"> <ref label="SignatureProperty" occurs="+"/> </elementRule> <tag name="SignatureProperty"> <attribute name="Target" required="true" type="uriReference"/> <attribute name="Id" type="ID"/> </tag> <elementRule role="SignatureProperty"> <mixed> <importedLabelRef label="SignatureProperty.External"/> </mixed> </elementRule> <tag name="HMACOutputLength"/> <elementRule role="HMACOutputLength" type="integer"/> <tag name="DSAKeyValue"/> <elementRule role="DSAKeyValue"> <sequence> <element name="P" type="string"/> <!-- CryptoBinary"/> <element name="Q"/> <!-- CryptoBinary"/> <element name="G"/> <!-- CryptoBinary"/> <element name="Y"/> <!-- CryptoBinary"/> <element name="J" type="string" occurs="?"/> <!-- CryptoBinary"/> <sequence occurs="?"> <element name="Seed" type="string"/> <!-- CryptoBinary"/> <element name="PgenCounter" type="string"/> <!-- CryptoBinary"/> </sequence> </sequence> </elementRule> <tag name="RSAKeyValue"/> <elementRule role="RSAKeyValue"> <sequence> <element name="Modulus" type="string"/> <!-- CryptoBinary"/> <element name="Exponent" type="string"/> <!-- CryptoBinary"/> </sequence> </elementRule> </module>
Received on Saturday, 16 December 2000 07:58:06 UTC