- From: Rich Salz <rsalz@datapower.com>
- Date: Tue, 1 Oct 2002 14:31:18 -0400 (EDT)
- To: "noah_mendelsohn@us.ibm.com" <noah_mendelsohn@us.ibm.com>
- cc: Marc Hadley <marc.hadley@sun.com>, "mgudgin@microsoft.com" <mgudgin@microsoft.com>, "xml-dist-app@w3.org" <xml-dist-app@w3.org>
> If you let me toggle the
> physical presence of mU attributes, then I have (an admittedly very
> clumsy) covert channel available.
I don't see how covert channels are relevant to the topic of signing
SOAP messages.
XML DSIG works by canonicalizing and then hashing XML, not infoset.
"Signing the infoset" might be an interesting academic exercise, but
it's not very worthwhile in terms of interopable XML DSIG signatures on
SOAP messages.
SOAP 1.2 allows various element rewrites that preserve SOAP semantics
but change the XML serialization such that two different processors
could get two different hashes of the same message. I recommend that
the spec notes this, points out you sign the individual piece-parts
with one signature, and wait for someone to draft a real SOAP C14N.
(Noah, what you described is what I would call a streaming implementation
of C14N You might want to wander around and find Maryann Hondo and
get a brief crypto tutorial.)
/r$
Received on Tuesday, 1 October 2002 14:31:20 UTC