- From: Donald E. Eastlake 3rd <lde008@dma.isg.mot.com>
- Date: Fri, 27 Jul 2001 17:44:42 -0400
- To: "Joseph M. Reagle Jr." <reagle@w3.org>
- cc: w3c-ietf-xmldsig@w3.org, lde008@dma.isg.mot.com
Sure, putting it at the top is a good idea. I meant they can either do a comparison based on a decoded octet stream or on that stream converted to an arbitrary precision integer. These might differ in which is considered larger if they are different (left versus right justification, signs, etc.) but should come out with the same answer on equal or not. Thanks, Donald From: "Joseph M. Reagle Jr." <reagle@w3.org> Message-Id: <4.3.2.7.2.20010727170347.02ec7e08@localhost> X-Sender: reagle@localhost Date: Fri, 27 Jul 2001 17:05:54 -0400 To: Donald Eastlake <lde008@dma.isg.mot.com> Cc: w3c-ietf-xmldsig@w3.org, lde008@dma.isg.mot.com In-Reply-To: <3B4C70A6.A96387B9@dma.isg.mot.com> Content-Type: text/plain; charset="us-ascii"; format=flowed >At 11:28 7/11/2001, Donald Eastlake wrote: >>Regardless of how things come out with what we recommend >>for base64, I suggest the addition of some material in >>3.2 Core Validation as show in the attachment. > >Don, > >Instead of repeatedly spreading it out, it's not text as the top of the >validation section: > >http://www.w3.org/Signature/Drafts/xmldsig-core/Overview.html#sec-CoreValidation >revision: 1.103 >>3.2 Core Validation >>... >>Comparison of values in reference and signature validation >>are over the numeric or decoded octet sequence of the value. >>Different implementations may produce different encoded digest and >>signature values when processing the same resources because of >>variances in their encoding, such as accidental white space. > >However, what do you mean by numeric *or* decoded octet? > >-- >Joseph Reagle Jr. http://www.w3.org/People/Reagle/ >W3C Policy Analyst mailto:reagle@w3.org >IETF/W3C XML-Signature Co-Chair http://www.w3.org/Signature >W3C XML Encryption Chair http://www.w3.org/Encryption/2001/
Received on Friday, 27 July 2001 17:44:45 UTC