[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: [OASIS Issue Tracker] (OFFICE-3940) Add OpenPGP-based XML encryption
[ https://issues.oasis-open.org/browse/OFFICE-3940?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=70089#comment-70089 ] Thorsten Behrens edited comment on OFFICE-3940 at 6/4/18 3:34 PM: ------------------------------------------------------------------ Hi Regina, no objections - the original proposal was just trying to be as close as possible to xmlenc-core1 - technically, there's no reason to have that extra level. Note though that (as your schema reflects), there can be more than one encrypted-key. As for the case, again that was inspired by xmlenc-core - for that one, let's simply lowercase it, there's no further duplications of CNAMES just differeing in case - or would the removal of the KeyInfo as noted above be enough to address your concern there, too? was (Author: thorsten.behrens): Hi Regina, no objections - the original proposal was just trying to be as close as possible to xmlenc-core1 - technically, there's no reason to have that extra level. Note though that (as your schema reflects), there can be more than one encrypted-key. As for the case, again that was inspired by xmlenc-core - for that one, let's simply lowercase it, there's no further duplications of CNAMES just differeing in case. > Add OpenPGP-based XML encryption > -------------------------------- > > Key: OFFICE-3940 > URL: https://issues.oasis-open.org/browse/OFFICE-3940 > Project: OASIS Open Document Format for Office Applications (OpenDocument) TC > Issue Type: New Feature > Components: Packaging > Affects Versions: ODF 1.3 > Reporter: Thorsten Behrens > Priority: Major > Fix For: ODF 1.3 > > > Currently ODF supports password-based encryption, using a user-provided string of characters to encrypt an AES session encryption key. > That is not ideal in the context of sharing documents securely with wider audiences, since one always needs a secure sidechannel to distribute the passphrase. > This proposal builds on top of https://www.w3.org/TR/2002/REC-xmlenc-core-20021210/ for XML encryption, and essentially extends the ODF manifest markup with a few nodes to denote OpenPGP key material plus transport encryption for the session key -- This message was sent by Atlassian JIRA (v7.7.2#77003)
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]