Re: New Attachments Issues from Rich Salz on 2003-06-11 (xml-dist-app@w3.org from June 2003)

From: Rich Salz <rsalz@datapower.com>
Date: Wed, 11 Jun 2003 11:30:56 -0400
To: Tony Graham <Tony.Graham@Sun.COM>
CC: XMLP Dist App <xml-dist-app@w3.org>
Message-ID: <3EE74B30.50500@datapower.com>

>    be over the included data. Current XML signature algorithms require
>    signing the included data as base64-encoded characters; the lexical
>    form of such characters SHOULD be canonicalized.

This is wrong.  Current XML signature algorithms work perfectly fine 
with signing binary data.  As it says at the start of the XML DSIG spec
    Signatures can be applied to any digital content
Cf: http://www.w3.org/TR/xmldsig-core/#def-DataObject

	/r$


-- 
Rich Salz, Chief Security Architect
DataPower Technology       http://www.datapower.com
XS40 XML Security Gateway  http://www.datapower.com/products/xs40.html
XML Security Overview      http://www.datapower.com/xmldev/xmlsecurity.html

Received on Wednesday, 11 June 2003 11:33:25 UTC