Re: More inter samples from Jiandong Guo on 2002-03-14 (xml-encryption@w3.org from March 2002)

From: Jiandong Guo <jguo@phaos.com>
Date: Thu, 14 Mar 2002 17:53:26 -0500
To: reagle@w3.org
CC: xml-encryption@w3.org
Message-ID: <3C9129E5.8BAA50EE@phaos.com>

Joseph,

The current status of our implementation is listed at the end. Support for
decryption transform will be added soon.
Also for each key encryption (key transport, key wrap, key transport)
algorithm, it is stated explicitly in [1] that support for encrypting certain
key sizes are required and for
encrypting the other sizes are optional (e.g. triple DES wrapping of triple DES
key is required and
of others is optional). Should we reflect this in [2]?

Could you also please relink the attached samples to [2]?  I change the DH
examples a bit which should
nail down the DH interop according to my correspondence with Merlin. I also
noticed that  the example in section
5.5.2 (page 31) in [1] is still not quit right. To put it correct should be
helpful for implementors.
Here is the result of my computation of that example:
...
Assuming that ZZ is 0xDEADBEEF, that would be

    SHA-1(0xDEADBEEF30314578616D706C653A426C6F636B2F416C67666F6F3830)

whose value is

    0x534C9B8C4ABDCB50038B42015A181711068B08C1
...

________________________________________________________

Lax valid scheme generation of EncryptedData/EncryptedKey           Y
     Normalized Form C
generations                                                   N
Type, MimeType, and
Encoding                                                        Y
CipherReference URI
deferencing                                                     Y

Transforms
Y
ds:KeyInfo
Y

ds:KeyValue
Y

enc:DHKeyValue
Y

ds:KeyName
Y

ds:RetrievalMethod
Y
ReferenceList
Y
EncryptionProperties
Y
Satisfactory
Performance
Y

Required Type support: Element and Content
Y
Encryption
Y
    Serialization of XML Element and
Content                                       Y
        1. NFC conversion from non-Unicode encoding                          N
    Encryptor returns EncryptedData
structure                                      Y
    Encryptor replaces EncryptedData into source
    document (when type is Element or
Content)                                    Y
Decryption
Y
    Decryptor returns the data and its Type to
    the
application
Y
    If data is Element or Content the decrypt return
    the UTF-8 encoding XML character
data                                          Y
    If data is Element or Content the decryptor replaces
    the EncryptedData in the source document with the decrypted data      Y

TRIPLEDES
Y1
AES-128
Y1
AES-256
Y1
AES-192
Y1
RSA-v1.5
Y1
RSA-OAEP
Y1
Diffie-Hellman Key
Agreement                                                                 Y1
TRIPLEDES Key
Wrap
Y1
AES-128 Key
Wrap
Y1
AES-256 Key
Wrap
Y1
AES-192 Key
Wrap
Y1
SHA-1
Y1
SHA256
Y1
SHA512
Y1
RIPEMD-160
N
XML Digital
Signature
Y1
Decryption Transform for XML
Signature                                                   N
     XPointer support in Except
URI                                                            N
Caonical
XML
Y1
Exclusive
Canonicalization
Y1
base64
Encoding
Y1
_______________________________________________________________________

[1] http://www.w3.org/Encryption/2001/Drafts/xmlenc-core/
[2] http://www.w3.org/Encryption/2002/02-xenc-interop.html


Thanks.

Jiandong Guo
Phaos Technology
http://www.phaos.com

Attachments

application/x-zip-compressed attachment: phaos-xmlenc-3.zip

Received on Thursday, 14 March 2002 17:43:40 UTC