DSS Additions to Comments Tracking

["Nick Pope" <nickpope@secstan.com>]

Can you add the following to the comments tracking document.

3. Issues Raised on Core CD4

Issues outstanding from Ed Shalow's email as in:
http://www.oasis-open.org/apps/org/workgroup/dss/email/archives/200605/msg00
004.html

Ed Comment 22:

Incorporation of signature timestamp in XML signatures:

Comment

 22) line 1070: "The present document does not establish a unique
solution. It is a matter of server policy to decide how to incorporate
signature
timestamps in the XML signatures rendered to its clients"

This phrase should either be reworded or removed as it will create
inter-operability anomalies across core implementations.

Resolution

Resolution being drafted incorporating XAdES Signature timestamps
- see action 06-06-05-02

----------

Enveloped XML signatures in non XML documents.

> > 25) line 1223-1226: "In the case of a non-XML input document, or when
> > these child elements are omitted, then the server places the signature
> > in the input document in accordance with procedures defined in a
> > profile or as part of the server policy."
> >
> > I believe we should reject non-XML Documents as default core
> > processing when Enveloped signatures are requested.
>
Resolution

this is replaced by:
"In the case of a non-XML input document, or when these child elements are
omitted, then the server will return an error unless alternative procedures
are defined by a profile or in the server policy for handling such a
situation."

http://www.oasis-open.org/apps/org/workgroup/dss/email/archives/200605/msg00
040.html
------

Clarification of treatment of RefURI within dss:SignedReferences
> > 30) line 1324-1325: have no idea what this is supposed to mean ???

Resolution

Replace with:
"RefURI [Optional]
If this attribute is present, the corresponding <ds:Reference> element’s
URI attribute is set to its value. If it is not present, the URI
attribute is omitted in the corresponding <ds:Reference>."
http://www.oasis-open.org/apps/org/workgroup/dss/email/archives/200606/msg00
012.html)

-------

<dss:VerificationTime> and its relationship with claimed SigningTime and
Signature timestamp.
> > 39) line 1656: "instead of the current time" implies that the DSS
> > implementation always uses the current time by default. What if
> > "SigningTime" is present in the signature ? This optional input
> > element needs to be re-written to reflect questions fielded from the
> > public review.

 &

> > 40) line 1747: a note should be made that qualifies the 3rd party's
> > ability to attest to the SigningTime (i.e. only content Timestamps
> > applied before signature creation should result in the
> > ThirdPartyTimestamp boolean being turned on, since a signature
> > Timestamp may be applied months after
> > SigningTime.)

Resolution

Several changes made to claify handling of verification time and to obtain
information about the signing time (if known).  For details see
http://www.oasis-open.org/apps/org/workgroup/dss/email/archives/200606/msg00
014.html



Public comments

 inma@dif.um.es, 21 April 2006
Regarding verification time
http://lists.oasis-open.org/archives/dss-comment/200604/msg00000.html

Resolution

As per Ed comment 39 & 40 Above

------------

 inma@dif.um.es, 25 April 2006
Clarification if procedures if signature timestamp is invalid.
http://lists.oasis-open.org/archives/dss-comment/200604/msg00001.html

Resolution

Yet to be resolved - may be resolved through resolution being drafted
incorporating XAdES Signature timestamps (see resolution to Ed 22)
- see action 06-06-05-02

----------------

 inma@dif.um.es, 12 May 2006

Clarification of various scenarios regarding verifying signatures

http://lists.oasis-open.org/archives/dss-comment/200605/msg00000.html

Resolution
Proposal
http://www.oasis-open.org/apps/org/workgroup/dss/email/archives/200606/msg00
013.html

-----------------

 Public comment Inma Marin 16 May
http://lists.oasis-open.org/archives/dss-comment/200605/msg00001.html

Resolution

May be resolved through resolution being drafted incorporating XAdES
Signature timestamps (see resolution to Ed 22)
- see action 06-06-05-02


-------------------

 Public comment Inma Marin 6 June

http://lists.oasis-open.org/archives/dss-comment/200606/msg00000.html

Resolion

Top be resolved.




Nick Pope
Mob: +44 (0) 777 567 2590