[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: Points for the April 30 deadline
My apologies for responding so late on John's e-mail; I was caught up in some other deliverables. I realize there is an active discussion going on on this topic, but I wanted to address some of John's comments; please see my responses embedded in John's e-mail message. Arshad Noor StrongAuth, Inc. ----- Original Message ----- From: "John Messing" <jmessing@law-on-line.com> To: legalxml-enotary@lists.oasis-open.org, "Arshad Noor" <arshad.noor@strongauth.com> Sent: Sunday, April 20, 2008 8:10:36 AM (GMT-0800) America/Los_Angeles Subject: Points for the April 30 deadline At the last TC Meeting, a deadline of April 30 was set for suggested changes to the deliverable that Arshad has been working on. While it was clarified that such matters can always be raised in connection with needed changes to the work as it progresses, presumptively consideration of such matters could be afterwards discouraged or considered out of order if not raised before the April 30 deadline. Some areas that were discussed in this context include: 1. Whether authentication of the notary was in or out of scope. My feeling is that while it is important for notary signing applications to authenticate notaries and to do so according to one or more standardized ways, this feature should nonetheless be declared out of scope for this version of the standard, which focuses principally on interoperability of disparate cryptographic signing methods, but I welcome other views. [AN] An application authenticating any entity should not be within the scope of a standardized document. From a technical viewpoint, it allows the standard document to survive technology. Applications may then evolve to use better authentication technologies while the document standard remains the same. 2. Whether some of the processes of notarization should be captured as meta-data in the standard. For example, a common law notary identifies the signer and determines whether the act of signing appears to be voluntary; i.e., the signer is not drunk or insane and does not appear to be under duress. Should a determination of voluntariness be implied from the act of notarization itself or optionally, expressly be able to be captured in XML meta-data for the benefit of other applications? Harry suggested the former. Unless there is a proponent of another view, I think his position will carry as persuasive. [AN] I believe the legal experts on this TC are better qualified to respond to this than I. 3. I have attached an image from a page of the slide show document that Arshad provided to the group in explaining the work he has done. It shows elements he has crafted with regard to a signed document element, which is an integral part of the work he has done. My thought was that the elements he has defined could include a richer XML vocabulary, which is a refinement of his work, so that applications could use the standard xml vocabulary in connection with electronic journal features they probably will or do also provide to notary users. [AN] Wherever there is a "boxed" element in the PDF presentation, the eNotary-1.0-CommonTypes.xsd file does have more detail; I have just chosen not to clutter up the PDF with too much detail. For example, the SignerName from this image is erally a container for the following name-components: <xsd:complexType name="PersonNameType"> <xsd:annotation> <xsd:documentation>The full name of a person.</xsd:documentation> </xsd:annotation> <xsd:sequence> <xsd:element name="PersonPrefixName" type="tns:PersonPrefixNameType" minOccurs="0"></xsd:element> <xsd:element name="PersonGivenName" type="tns:PersonGivenNameType"></xsd:element> <xsd:element name="PersonMiddleName" type="tns:PersonMiddleNameType" minOccurs="0"></xsd:element> <xsd:element name="PersonSurName" type="tns:PersonSurNameType"></xsd:element> <xsd:element name="PersonSuffixName" type="tns:PersonSuffixNameType" minOccurs="0"></xsd:element> <xsd:element name="PersonMaidenName" type="tns:PersonMaidenNameType" minOccurs="0"></xsd:element> <xsd:element name="PersonFullName" type="tns:PersonFullNameType" minOccurs="0"></xsd:element> </xsd:sequence> </xsd:complexType> I took this definition from the JXDM model, since it appeared to address international requirements, while fully addressing US requirements too. Similarly, other elements also have details that are already defined. If you haven't had a chance to review the eNotary-1.0-CommonTypes.xsd file, I would encourage you to do so (with WordPad or an XML editor) and then let me know if the detail elements are appropriate for the eNotary standard. 4. I would have the signer name broken down into first, last and middle name elements, on the theory that it is easier for computer applications to combine pieces of smaller units of text than to take a larger block of text and try to break it into component pieces (concatenate strings rather than split them). [AN] See my note for (3). 5. Similarly, I would break the address into street address, postal code, city, state or province, and country. [AN] The eNotary-1.0-CommonTypes.xsd file has the following breakdown: <xsd:complexType name="USAddressType"> <xsd:annotation> <xsd:documentation>A location address in the United States.</xsd:documentation> </xsd:annotation> <xsd:sequence> <xsd:element name="StreetAddress1" type="tns:StreetAddressType" minOccurs="0"></xsd:element> <xsd:element name="StreetAddress2" type="tns:StreetAddressType" minOccurs="0"></xsd:element> <xsd:element name="City" type="tns:CityType" minOccurs="0"></xsd:element> <xsd:element name="County" type="tns:CountyType" minOccurs="1"></xsd:element> <xsd:element name="USState" type="tns:USStateCodeType" minOccurs="1"></xsd:element> <xsd:element name="USZipCode" type="tns:USZipCodeType" minOccurs="0"></xsd:element> </xsd:sequence> </xsd:complexType> We can extend the model to include an international address too, if needed in the first version of the standard. 6. WRT signer ID, I assume this means the hard copy identification document or documents that the notary relied upon to establish identity. I would have a list here, perhaps with child elements to establish the number and issuing jurisdiction, include as options: driver's license, national passport, state ID card, immigration document, etc. [AN] I have the following breakdown for SignerID: <xsd:complexType name="PersonIdentificationType"> <xsd:annotation> <xsd:documentation>The identification document of a person.</xsd:documentation> </xsd:annotation> <xsd:sequence> <xsd:element name="IDDocument" type="tns:IDDocumentType" minOccurs="1"></xsd:element> <xsd:element name="IDDocumentNumber" type="xsd:string" minOccurs="0"></xsd:element> <xsd:element name="IDExpirationDate" type="tns:DateType" minOccurs="0"></xsd:element> <xsd:element name="IDIssuedBy" type="xsd:string" minOccurs="1"></xsd:element> </xsd:sequence> </xsd:complexType> and for the IDDocumentType element, I have provided the following choices that application developers can use (we can add more if needed): <xsd:simpleType name="IDDocumentType"> <xsd:annotation> <xsd:documentation> A code list that enumerates the types of identification documents. </xsd:documentation> </xsd:annotation> <xsd:restriction base="xsd:token"> <xsd:enumeration value="Birth Certificate"/> <xsd:enumeration value="Citizenship Certificate"/> <xsd:enumeration value="Drivers License"/> <xsd:enumeration value="Identity Card"/> <xsd:enumeration value="Military ID Card"/> <xsd:enumeration value="Other"/> <xsd:enumeration value="Passport"/> <xsd:enumeration value="Permanent Resident Card"/> <xsd:enumeration value="REAL ID Card"/> <xsd:enumeration value="Veteran ID Card"/> </xsd:restriction> </xsd:simpleType> 7. As for signer digital certificate, I propose substituting digital credential, with child elements that could include digital certificate, user token, etc. [AN] This element is optional, and if used, will be used for generating an XML Signature with a standard X509 certificate *if* the signer has one. I would recommend we leave this element alone, since it has no bearing on the signer's signature if they used a different token for signing the document. Attemtping to accommodate all types of signer tokens in the 1.0 standard will make the schema unwieldy and we might want to wait for implementation feedback as we move towards the 2.0 standard. 8. Other elements: in some states a notary actually records a fingerprint in a journal. Some existing applications also capture a biometric signature. I suggest an optional element of a biometric identifier, which could include iris scan, fingerprint, handwriting exemplar, etc. This could perhaps be combined with the element list in no. 7 as other companion elements in the digital credential category. [AN] Once again, I understand the goal of this standard to be the notarization of documents. If we have captured the elements needed to identify an eNotarized document's signer(s) and verify the notary signature on the document, then we will have met our goal without including signer authentication information in the standard. 9. I encourage input from others to these and any other points so that the TC can decide them at the next meeting and enable Arshad to move expeditiously forward, and I particularly name as possible contributors John Jones, Marc Aronson and any NNA representative to the TC. Best regards.
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]