- From: David Orchard <david.orchard@bea.com>
- Date: Thu, 10 Jan 2002 17:18:04 -0800
- To: "'Rich Salz'" <rsalz@zolera.com>
- Cc: "'Mark Baker'" <distobj@acm.org>, <xml-dist-app@w3.org>
I'm not sure what the right way to design this would be. You could encrypt the entire header element. Then when it's decrypted, whoever decrypted it could see the actor, plus whatever else is in the header. Unless we allow nested encryption, which makes my brain hurt even more. I see a rat's nest ahead as we tumble down the slippery slope. I really believe we need more use cases on these various types. Oh wait, I'm supposed to write use cases. Cheers, Dave > -----Original Message----- > From: xml-dist-app-request@w3.org > [mailto:xml-dist-app-request@w3.org]On > Behalf Of Rich Salz > Sent: Thursday, January 10, 2002 4:26 PM > To: David Orchard > Cc: 'Mark Baker'; xml-dist-app@w3.org > Subject: Re: Draft registration of application/soap+xml > > > The entire header element can be encrypted, including the actor? > /r$ > -- > Zolera Systems, Securing web services (XML, SOAP, Signatures, > Encryption) > http://www.zolera.com >
Received on Thursday, 10 January 2002 20:21:34 UTC