Re: AW: KeyName white space from merlin on 2001-05-15 (w3c-ietf-xmldsig@w3.org from April to June 2001)

From: merlin <merlin@baltimore.ie>
Date: Tue, 15 May 2001 10:49:55 +0100
To: "Gregor Karlinger" <gregor.karlinger@iaik.at>
Cc: w3c-ietf-xmldsig@w3.org
Message-Id: <20010515094955.DCFDF43C15@yog-sothoth.ie.baltimore.com>

Hi Gregor,

I qualified RFC 2253 with 'I think' because I did not
have documentation in front of me.. You're right, it
is not explicit, but I think it is in the spirit of the
document and its requirements of flexibility in the
handling of whitespace. In particular, spaces at the
end of attribute values must be escaped, which suggests
(to me) that unescaped spaces at the end may be ignored.

But you are right, an XMLDSIG statement would be in
order, and would appear to be compatible with RFC2253.
It should probably state that escaped spaces at the end
must be preserved.

Merlin

r/gregor.karlinger@iaik.at/2001.05.15/11:25:32
>Merlin,
>
>> Agreed. DNames already have this property (from RFC 2253 I think),
>          ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
>What do you mean? Currently XML-Signature does not say anything about
>stripping the white space, nor is there a requirement in RFC 2253 to
>be tolerant regarding whitespace at the beginning or at the end of a
>DName string.
>
>We currently make a trim() prior to parsing the DName string in our
>implementation, but I would like to see an appropriate sentence in 
>XML-Signature.
>
>> and I believe so do base-64 coded data as well as integers, so
>> this would unify pretty much all of our text handling.
>
>Liebe Gruesse/Regards, 
>---------------------------------------------------------------
>DI Gregor Karlinger
>mailto:gregor.karlinger@iaik.at
>http://www.iaik.at
>Phone +43 316 873 5541
>Institute for Applied Information Processing and Communications
>Austria
>---------------------------------------------------------------
> 
>


-----------------------------------------------------------------------------
Baltimore Technologies plc will not be liable for direct,  special,  indirect 
or consequential  damages  arising  from  alteration of  the contents of this
message by a third party or as a result of any virus being passed on.

In addition, certain Marketing collateral may be added from time to time to
promote Baltimore Technologies products, services, Global e-Security or
appearance at trade shows and conferences.

This footnote confirms that this email message has been swept by
Baltimore MIMEsweeper for Content Security threats, including
computer viruses.
   http://www.baltimore.com

Received on Tuesday, 15 May 2001 05:50:47 UTC