[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Subject: Re: [ebxml-msg] Re: Comments on the 1.09 about signed AcknowledgementMessage
David,
I believe you mean section 4.1.4.2 and not 11.1.4. This section should be
referenced from 7.3.2.6.
There are at least two issues in this I raised in my "first half" email and
not seen any response:
1) As Shimamura-san mentions, the text in 4.1.4.2 is vague enough to be
useless. The definition you've provided below doesn't really help though it
might be worthwhile somewhere in the document. What does "consistent" mean?
Do these words describe the ds:Reference elements in the eb:Acknowledgment
or the list in the ds:Signature element? In either case, we've said the
ds:Reference should be consistent with the corresponding eb:Reference
element and eb:Reference should use the cid: scheme if and only if the
payload is part of the current message. Use of ds:Reference pointing to
payloads in the original message violates these recommendations and
requirements. Is that the intention? What should happen if the
ds:Signature from the original message didn't reference all payloads in that
message? What should happen if the original message wasn't signed at all?
2) Why must a signed Acknowledgment also sign the contents of the original
message (when the sender's signatures would have locked that down already)?
This raises the implementation cost and means a signed acknowledgment can't
be just a signed acknowledgment. (No, I'm not sure what this document
containing eb:Acknowledgment/ds:Reference+ and ds:Signature would be called.
Probably NRR in your terms.)
On a much more minor level, "a ds:Reference element" is incorrect. If it's
necessary to sign the contents of the original message, one ds:Reference
allows you to sign only the soap:Envelope or your favourite payload.
thanx,
doug
----- Original Message -----
From: "David Fischer" <david@drummondgroup.com>
To: "SHIMAMURA Masayoshi" <shima.masa@jp.fujitsu.com>;
<ebxml-msg@lists.oasis-open.org>
Sent: Wednesday, 05 December 2001 06:01
Subject: RE: [ebxml-msg] Re: Comments on the 1.09 about signed
Acknowledgement Message
A signed message is a message with a ds:Signature element. An
Acknowledgment
Message is one with an Acknowledgment element. A signed Acknowledgment
message
would be one with both. There is no need for a ds:Signature element inside
the
Acknowledgment element.
The spec already says that a signed Acknowledgment Message MUST include a
ds:Reference element within the Acknowledgment element 7.3.2.6 and there is
a
special section about signing intermediate Acknowledgments 11.1.4.
Regards,
David.
-----Original Message-----
From: SHIMAMURA Masayoshi [mailto:shima.masa@jp.fujitsu.com]
Sent: Wednesday, December 05, 2001 3:52 AM
To: ebxml-msg@lists.oasis-open.org
Subject: [ebxml-msg] Re: Comments on the 1.09 about signed
Acknowledgement Message
Does someone know answer to the questions?
> From: SHIMAMURA Masayoshi <shima.masa@jp.fujitsu.com>
> Subject: [ebxml-msg] Comments on the 1.09 about signed Acknowledgement
Message
> To: ebxml-msg@lists.oasis-open.org
> Message-id: <20011130190044.3882.SHIMA.MASA@jp.fujitsu.com>
>
> There is no definition of "signed Acknowledgement Message" in the
> specification. What is signed Acknowledgement Message? What conditions
> must be satisfied?
>
> condition 1: The Acknowledgement Message must have Signature element
> condition 2: The Acknowledgement Message must have Acknowledgement
> element with ds:Reference element
> condition 3: Both conditions 1 and 2 at same time
>
> Which?
>
>
> And also, there is no description about how to create ds:Reference
> element in Acknowledgement element. V1.09 says:
>
> 4.1.4.2 Persistent Signed Receipt
> An ebXML Message that has been digitally signed MAY be acknowledged
> with an Acknowledgment Message that itself is digitally signed in the
> manner described in the previous section. The Acknowledgment Message
> MUST contain a ds:Reference element consistent with that contained in
> the ds:Signature element of the original message.
> (P. 27)
>
> Is the description applied to ds:Reference element in ds:Signature
> element in Acknowledgment Message? Or applied to ds:Reference element in
> Acknowledgment element in Acknowledgment Message? Or applied to both?
Regards,
--
SHIMAMURA Masayoshi <shima.masa@jp.fujitsu.com>
TEL:+81-45-476-4590(ext.7128-4241) FAX:+81-45-476-4726(ext.7128-6783)
Planning Dep., Strategic Planning Div., Software Group, FUJITSU LIMITED
----------------------------------------------------------------
To subscribe or unsubscribe from this elist use the subscription
manager: <http://lists.oasis-open.org/ob/adm.pl>
----------------------------------------------------------------
To subscribe or unsubscribe from this elist use the subscription
manager: <http://lists.oasis-open.org/ob/adm.pl>
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Powered by eList eXpress LLC