W3C home > Mailing lists > Public > xml-encryption@w3.org > February 2001

RE: Signing and Encryption

From: Masline, Richard (R.) <rmasline@ford.com>
Date: Thu, 1 Feb 2001 16:09:54 -0500
Message-ID: <200102012124.f11LOsJ13431@dymwsm10.mailwatch.com>
To: "'Joseph M. Reagle Jr.'" <reagle@w3.org>, "Mike Wray" <mjw@hplb.hpl.hp.com>
cc: xml-encryption@w3.org
This e-Mail was delivered to me.  You sent me one about the subscription 
and some how it must have tagged along.  This mail server here is Outlook.
Another MS bug, or someone else's?  Mike Wray may or may not have gotten the
message addressed to him!

Thought you'd like to know.

Richard Masline
Consulting I/T Architect

Ford #     (313)248-2591 internal 82591

IBM #     (704)595-3369
Cell #      (704)905-5448
Page#    (704)905-5448 pin 5

-----Original Message-----
From: Joseph M. Reagle Jr. [mailto:reagle@w3.org]
Sent: Thursday, February 01, 2001 3:57 PM
To: Mike Wray
Cc: xml-encryption@w3.org
Subject: Re: Signing and Encryption

At 12:11 2/1/2001 -0500, Mike Wray wrote:
>Anyway, if we want to support the general case it looks like we
>need to add extra information to indicate what signing/encryption operation
>(or other transform) has been applied to a document. In general, if
>we start with X0 and generate a sequence X1, X2, ...., Xn by composing
>operations, we need to add enough information to recover X(i-1) from Xi
>for 1<=i<=n.

This sort of thing has been hinted at before:

>     6. Encryption and Signatures
>               C. Capture the order of processing:
>                    A. ...
>                    B. A separate XML structure contains a stack of
>                       processing (signing/encrypting) steps; you can't
>                       insert this as attributes directly.into the XML as
>                       it would then break signatures. {[110]List:
>                       [111]Hallam-Baker/Reagle}
>                    C. ...

To see how this idea measures up, it'd be good to see an actual example.

Joseph Reagle Jr.                 http://www.w3.org/People/Reagle/
W3C Policy Analyst                mailto:reagle@w3.org
IETF/W3C XML-Signature Co-Chair   http://www.w3.org/Signature
W3C XML Encryption Chair          http://www.w3.org/Encryption/2001/
Received on Thursday, 1 February 2001 16:25:45 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 23:13:02 UTC