- From: Takeshi Imamura <IMAMU@jp.ibm.com>
- Date: Thu, 29 Mar 2001 19:33:40 +0900
- To: "Joseph M. Reagle Jr." <reagle@w3.org>
- Cc: "XML Encryption WG " <xml-encryption@w3.org>, "Dan Connolly" <connolly@w3.org>, "Philippe Le H ¨¦garet" <plh@w3.org>, "Hiroshi Maruyama" <MARUYAMA@jp.ibm.com>
Joseph, >* Serialization: We would need to define a serialization for the > Information Set. Richard Tobin has worked on a proposal for > serializing a post-schema-validated Infoset. Or (since the serialization > isn't as sensitive as it was in signature which requires all serialization > of the same instance to be bit-by-bit identical) we might be able to leave > this up to applications. The serialization is not so sensitive if only encryption is performed. However, that may not be true if both encryption and signature are performed on a document. For example, suppose that a user signs and then encrypts a document, where he defines and uses his own serialization which does not preserve information set. Another user will fail in verifying the signature because the original document cannot be retrieved. For such reason, I think we should define at least a serialization for information set. Thanks, Takeshi IMAMURA Tokyo Research Laboratory IBM Research imamu@jp.ibm.com
Received on Thursday, 29 March 2001 05:33:54 UTC