OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

saml-dev message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Re: [saml-dev] SHA-1 vs. SHA-2/SHA-3/etc.?

Hi,

so, you mean, that in this requirement: "SAML processors SHOULD support the use of RSA signing and verification for public key operations in accordance with the algorithm identified by http://www.w3.org/2000/09/xmldsig#rsa-sha1."; the "SHOULD" means that "at least, but not exclusively", am I right?

Thanks for the clarification!

Best regards,
Aron

---

You can use any algorithm you like. The SHOULD is a conformance statement
about what implementations have to support, not about what the standard
requires.

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]