W3C home > Mailing lists > Public > www-xkms@w3.org > February 2003

part 2 comments - 16-Dec-02

From: <Frederick.Hirsch@nokia.com>
Date: Wed, 19 Feb 2003 16:25:19 -0500
Message-ID: <E320A8529CF07E4C967ECC2F380B0CF90106801E@bsebe001.americas.nokia.com>
To: <www-xkms@w3.org>, <pbaker@verisign.com>


Here are some comments on Part 2 of the latest XKMS draft 16-Dec-02


[37] Digest Authenticated Request does not refer to HTTP digest authentication, but 
XML Dig Sig signed requests? RequestSignatureValue bound to response because response is signed or 
integrity guaranteed by transport? (I guess the question is where is digest authenticated request defined?
(2.7.11 part 1) Change title to RequestSignatureValue Correlation?

[44] Perhaps some clarification would be useful for unauthenticated secondary registration requests?
Doesn't the AuthenticationRequest in part 1 require authentication element?


[16], [49], [50] etc - &apos; replacement

Add XTAML reference to references

[34] s/Must/MUST

[35],[36] delete?

[64] mention Exclusive Canonicalization or signature extraction from message before verification processing?

[90] Compound request example TBS - not sure it is needed given part 1 text.

regards, Frederick
Frederick Hirsch
Nokia Mobile Phones
Received on Wednesday, 19 February 2003 16:25:30 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 23:07:23 UTC