Re: [ws-brsp] Groups - BSP11-upgrade-with-SHA-extensibility-point uploaded

[Pim van der Eijk <pvde@sonnenglanz.net>]

Hi Jacques,

A comment on the wording of the extensibility point:  whereas SHA-1 was a single cryptographic hash function, SHA-2 is actually a general term that covers six different cryptographic hash functions (SHA-224, SHA-256, SHA-384, SHA-512, SHA-512/224, SHA-512/256).   So if the approach of using an extensibility point is adopted,  I would propose to reword:

"version of SHA algorithm in use (SHA-1, SHA-2, SHA-256)"

as something like:

"SHA algorithm in use (SHA-1 or one of the SHA-2 algorithms)"

We can discuss later today.

Pim

On 05/22/2014 01:53 AM, Jacques Durand wrote:

Submitter's message
The diffs show a possible upgrade to BSP11:
- adding a new extensibility point:
o E0014 – Signature Digest algorithm – version of SHA algorithm in use (SHA-1, SHA-2, SHA-256).
- prefixing every Rxxx requirement that uses SHA-1, with a conditional introduction ("if SHA-1 is used....")
-- Mr Jacques Durand

Document Name: BSP11-upgrade-with-SHA-extensibility-point

---

Description
The diffs show a possible upgrade to BSP11:
- adding a new extensibility point:
o E0014 – Signature Digest algorithm – version of SHA algorithm in use
(SHA-1, SHA-2, SHA-256).
- prefixing every Rxxx requirement that uses SHA-1, with a conditional
introduction ("if SHA-1 is used....")
Download Latest Revision
Public Download Link

---

Submitter: Mr Jacques Durand
Group: OASIS Web Services Basic Reliable and Secure Profiles (WS-BRSP) TC
Folder: Working Drafts
Date submitted: 2014-05-21 16:53:18