It appears that our definition of AgreementMethod is somewhat
over-restrictive. It could (?) be readily used in a MAC-based signature,
but this is not provided for in the text or definition.

I'd suggest generalizing some of the text from EncryptionAlg to TargetAlg
(with text stating that this may be an EncryptionAlg, a MacAlg, etc.)

We'd also need text to state the size of key to produce for a HMAC
algorithm; maybe, unless otherwise stated, equal to the (possibly
truncated) size of the HMAC output; e.g., 160 bits for HMAC-SHA1, or 80
bits for 80-bit truncated HMAC-SHA1.

The text also states that this will be the child of an EncryptedData
or EncryptedKey; this may not be true, as it could be the target of
a RetrievalMethod or (in the case above) the child of a Signature.
I'd suggest changing "a child of" to "the keying information for" or
something similarly vague.


Baltimore Technologies plc will not be liable for direct,  special,  indirect 
or consequential  damages  arising  from  alteration of  the contents of this
message by a third party or as a result of any virus being passed on.

In addition, certain Marketing collateral may be added from time to time to
promote Baltimore Technologies products, services, Global e-Security or
appearance at trade shows and conferences.

This footnote confirms that this email message has been swept by
Baltimore MIMEsweeper for Content Security threats, including
computer viruses.

Received on Saturday, 28 July 2001 09:18:52 UTC