[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Trusted res XML for review
I've attached an XML document that reflects the current thinking about trusted resolution - an XRIDescriptor that contains a signed, enveloped SAML assertion. This is the XRID returned by the @ authority when asked about .example (i.e. the resolution of @example). Comments are welcome. Dave
<XRIDescriptor ID="baec221f3c0f17f53ca6839989632056" xmlns="xri:$r.s/XRIDescriptor" xmlns:xrit="xri:$r.s/XRITrusted"> <Resolved>.example</Resolved> <XRIAuthority> <xrit:AuthorityID>urn:uuid:C5C9EFDF-A3BC-4301-88C6-B1AE0AD6DA77 </xrit:AuthorityID> <URI>http://xri.example.com/xri-resolve/</URI> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> ... </ds:KeyInfo> </XRIAuthority> <LocalAccess>...</LocalAccess> <xrit:AuthorityID>urn:uuid:498FB006-B9EF-4943-B10A-A71FC2ED1B89 </xrit:AuthorityID> <xrit:TrustMechanism>xri:$t/XRITrusted</xrit:TrustMechanism> <saml:Assertion MajorVersion="2" MinorVersion="0" ID="_ad9571ad-cd23-85e2-e928-abba20b6c424" IssueInstant="2004-07-01T00:46:02Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:protocol"> <saml:Issuer>urn:uuid:498FB006-B9EF-4943-B10A-A71FC2ED1B89</saml:Issuer> <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:SignedInfo> <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" /> <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" /> <ds:Reference URI="#baec221f3c0f17f53ca6839989632056"> <ds:Transforms> <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" /> <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"> <ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="#default code ds kind rw saml samlp typens" /> </ds:Transform> </ds:Transforms> <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /> <ds:DigestValue>BSsnowZG5DYV0X0C8GAeB1cvLzw=</ds:DigestValue> </ds:Reference> </ds:SignedInfo> <ds:SignatureValue> kE9p35G4mcombsqEztJMX1R3J26gwc4cbjSz5fUv3aVg3j/iLhrbf0qKywYNMLdQMjBRcCg5N1l0 Kvv2UrgvQ5kgQ9dm7/563rRzKAaIQwMopZpTFli4eXw+nc8XEH+KnXdu/R9DHOg9k0BKIF6BGk07 xC6Q9X+byQWenPjAZ1c= </ds:SignatureValue> </ds:Signature> <saml:Subject> <saml:NameID NameQualifier="urn:uuid:498FB006-B9EF-4943-B10A-A71FC2ED1B89"> .example </saml:NameID> </saml:Subject> <saml:Conditions NotBefore="2004-06-01T00:00:00Z" NotOnOrAfter="2004-09-01T00:00:00Z" /> <saml:AttributeStatement> <saml:Attribute Name="xri:$t/XRIDescriptor"> <saml:AttributeValue>#baec221f3c0f17f53ca6839989632056</saml:AttributeValue> </saml:Attribute> </saml:AttributeStatement> </saml:Assertion> </XRIDescriptor>
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]