OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

dss-x-comment message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Re: ETSI STF 539

Hi Henrik,


> Sure, we can have the discussions on the OASIS DSS/X mailing list in the future. How do we do that?
you can send / reply to dss-x-comment@lists.oasis-open.org , this list
is open for public comments.
> There is no DocuSign representative in our STF. I'm not sure if the VisSig profile will be used so we will have to come back to that later.
I remember the discussions regarding the VisSig profile as quite
lengthy. Due to my opinion we mixed several different requirements into
this profile:
 
- signature on a PDF (according to ISO 32000)
- visual representation of a PDF signature
- visible signatures (e.g. QR codes)

These three topics deserve to be addressed separately. ISO 32000 lost
its relevance and the 'visual representation' aspect turns out to be
quite tricky and opens the gate to document editing functionality. So I
don't expect someone will start working on the VisSig profile anytime soon.

Greetings,

Andreas
> Hälsningar/Regards/Grüße - Henrik
>
> -----Original Message-----
> From: akuehne [mailto:akuehne@trustable.eu] 
> Sent: den 4 april 2018 17:06
> To: Henrik Löfgren <henrik@comfact.com>; kuehne@trustable.de
> Cc: 'Anders Tornqvist' <anders@comfact.com>
> Subject: Re: ETSI STF 539
>
> Hi Henrik,
>
>> My name is Henrik Löfgren and I am working with Anders Törnqvist in the ETSI STF 539 about protocols for server signing. We have some more questions and comments about OASIS DSS2 that we hope you can help us with.
> pleased to meet you!
>
> A general question upfront: I'm a bit unsure about the deteils of OASIS / ETSI collaboration agreement. But I would appreciate to have the discussions with STFs handled by the OASIS DSS/X mailing list so the whole TC is informed / can contribute. What's your opinion regarding this topic?
>> In the XML schema for DSS2, the SignRequest allows multiple Document elements in InputDocuments, but the OptionalOutputs of the SignResponse only allows at most one DocumentWithSignature element. Is this a mistake?
> The general assumption of the DSS processing model 'one call / one signature'. You may provide a bunch of documents for e.g. a XMLDSig signature but will receive just one signature. In case it's an enveloped signature it will be returned in a single DocumentWithSignature . The multiplicity of input documents does not imply a batch generation of multiple signatures.
>> We also noticed that the asynchronous processing profile refers to ResponseID as an element but in the XML schema it is defined as a type.
> The ResponseID is just a string element. With the 'Any' approach of optional elements there was no need to specify it explicitly in the schema. With the DSS/X 2.0 approach it will be more prominent!
>> Will there be full support for PAdES in the new AdES profile for DSS2? We believe this was missing in the AdES profile for DSS, version 1.0?
> The AdES profile was finalized long before PAdES  was a relevant topic.
> We got a draft of a PAdES profile and aligning it with the new core version is on our list, but not at the top.
>> Finally, do you also have plans to update the Visible Signature profile for PDF documents with DSS2?
> The VisSig profile was mainly driven by docusign.com . Currently we don't have a member from docusign in our TC. Is there anyone around in your STF? If not I may try to connect with someone.
>
>
> Greetings,
>
> Andreas
>
>> Any help you can provide is much appreciated!
>>
>> Hälsningar/Regards/Grüße - Henrik
>>
>> HENRIK LÖFGREN, CTO
>> henrik@comfact.com
>> Tel: +46 (0)31 13 53 15 Mobile: +46 (0)768 15 98 11 www.comfact.com
>>
>>
>> -----Original Message-----
>> From: Anders Tornqvist [mailto:anders@comfact.com]
>> Sent: den 15 mars 2018 12:52
>> To: henrik@comfact.com
>> Subject: FW: ETSI STF 539
>>
>> Se svar nedan + bifogad zip.
>>
>> Hälsningar/Regards/Grüße, Anders Törnqvist, Comfact AB +46 (0)768 15 
>> 98 10
>>
>> -----Original Message-----
>> From: Andreas Kuehne <kuehne@trustable.de>
>> Sent: den 15 mars 2018 12:47
>> To: Anders Tornqvist <anders@comfact.com>
>> Subject: Re: ETSI STF 539
>>
>> Hi Anders,
>>
>> yes, we work on the profiles in parallel to ensure compatibility with our multi-syntax approach. The Async profile isn't affected at all. But the AdES profile sees the most significant impact from the multi-syntax related changes. Both profiles are used by the verification profile (see attached).
>>
>> Greetings,
>>
>> Andreas
>>> Hi Andreas
>>>
>>> Do you have any plans to create updated versions of the “Asynchronous 
>>> Processing” and “AdES” profiles for DSS version 2.0?
>>>
>>> Hälsningar/Regards/Grüße, Anders Törnqvist, Comfact AB +46 (0)768 15
>>> 98 10
>>>
>>> -----Original Message-----
>>> From: Andreas Kuehne <kuehne@trustable.de>
>>> Sent: den 13 mars 2018 10:41
>>> To: Anders Tornqvist <anders@comfact.com>; 'Juan Carlos Cruellas'
>>> <cruellas@ac.upc.edu>
>>> Cc: 'Pope, Nick' <nick.pope@thales-esecurity.com>; dss-x 
>>> <dss-x@lists.oasis-open.org>
>>> Subject: Re: ETSI STF 539
>>>
>>> Hi Anders,  hi Juan Carlos,
>>>
>>> regardless of some ongoing discussions with OASIS regarding the 
>>> version's namespace I would like to send you our current working draft.
>>> An open topic are the elements 'Info' and 'Description' intended to 
>>> offer a self describing mechanism for DSS instances. Maybe we will 
>>> drop these elements in favour of e.g. an RDF mechanism, maybe we'll 
>>> flesh up the descriptions of this topics.
>>>
>>> You'll find the spec and the related XML schemes, JSON schema and 
>>> OpenAPI document attached. Comments very welcome!
>>>
>>> Greetings,
>>>
>>> Andreas
>>>> Hi Andreas and Juan Carlos
>>>>
>>>>  
>>>>
>>>> We are working on the mapping between the protocol for “Remote Signatures”
>>>> (STF539) making use of version 2 of DSS. We have an old set of 
>>>> documents but are wondering if there is are newer versions?
>>>>
>>>>  
>>>>
>>>> It would be helpful if we could work with the latest drafts and 
>>>> would appreciate if you could send them to me?
>>>>
>>>>  
>>>>
>>>> Hälsningar/Regards/Grüße, Anders Törnqvist, Comfact AB +46 (0)768 15
>>>> 98 10
>>>>
>>>>  
>>>>
>>>> From: Andreas Kühne <kuehne@trustable.de>
>>>> Sent: den 15 november 2017 21:18
>>>> To: 'Anders Tornqvist' <anders@comfact.com>
>>>> Cc: 'Juan Carlos Cruellas' <cruellas@ac.upc.edu>; 'Pope, Nick'
>>>> <nick.pope@thales-esecurity.com>
>>>> Subject: AW: ETSI STF 539
>>>>
>>>>  
>>>>
>>>> Hi Anders,
>>>>
>>>>  
>>>>
>>>> we are currently reworking the DSS core to support additional 
>>>> transport syntaxes, starting with JSON. The approach has significant 
>>>> impact on the XML schema and the structure of the core specification 
>>>> document. See our current working version attached but please keep 
>>>> in mind that it is work in progress. Especially the process section 
>>>> of the
>>> core will see some rework.
>>>>  
>>>>
>>>> Comments and remarks welcome!
>>>>
>>>>  
>>>>
>>>> Greetings,
>>>>
>>>>  
>>>>
>>>> Andreas
>>>>
>>>>  
>>>>
>>>> Von: Anders Tornqvist [mailto:anders@comfact.com]
>>>> Gesendet: Mittwoch, 15. November 2017 20:19
>>>> An: 'Juan Carlos Cruellas' <cruellas@ac.upc.edu 
>>>> <mailto:cruellas@ac.upc.edu>
>>>>> ; 'Pope, Nick' <nick.pope@thales-esecurity.com
>>>> <mailto:nick.pope@thales-esecurity.com> >; 'Andreas Kuehne'
>>>> <kuehne@trustable.de <mailto:kuehne@trustable.de> >
>>>> Betreff: RE: ETSI STF 539
>>>>
>>>>  
>>>>
>>>> Hi Andreas
>>>>
>>>>  
>>>>
>>>> We are currently in an intense phase of aggregating solutions e.g. 
>>>> CEN TW4S, the CSC implementation of this, aspects of federated 
>>>> identities
>>>> (SAML) and other proprietary solutions. The OASIS DSS is kind of 
>>>> central. If it is possible for us to get an understanding of the new 
>>>> core v2.0 I think it would be a major contribution to our work.
>>>>
>>>>  
>>>>
>>>> If this possible and if so by when? We need to know as we have a 
>>>> very tight time-schedule.
>>>>
>>>>  
>>>>
>>>> Hälsningar/Regards/Grüße, Anders Törnqvist, Comfact AB +46 (0)768 15
>>>> 98 10
>>>>
>>>>  
>>>>
>>>> From: Juan Carlos Cruellas [mailto:cruellas@ac.upc.edu]
>>>> Sent: Wednesday, November 15, 2017 17:02
>>>> To: Anders Tornqvist <anders@comfact.com <mailto:anders@comfact.com>
>>>>> ; 'Pope, Nick' <nick.pope@thales-esecurity.com
>>>> <mailto:nick.pope@thales-esecurity.com> >; 'Andreas Kuehne'
>>>> <kuehne@trustable.de <mailto:kuehne@trustable.de> >
>>>> Subject: Re: ETSI STF 539
>>>>
>>>>  
>>>>
>>>> Hi Anders,
>>>> I will leave Andreas, the editor of the new core v2.0 to provide 
>>>> with details on the new document.
>>>>
>>>> Regards
>>>> Juan Carlos.
>>>> El 13/11/17 a las 19:17, Anders Tornqvist escribió:
>>>>
>>>> Hello Juan Carlos,
>>>>
>>>>  
>>>>
>>>> Excellent! In the STF539 work we are currently compiling different 
>>>> specifications in order to arrive at an overall architecture that 
>>>> fulfills the task of “ETSI TS 119 432 Protocols for remote digital 
>>>> signature creation”. This of course includes OASIS DSS and to some 
>>>> extent DSSX. We know the OASIS DSS well as we have implemented it in 
>>>> many forms. But we have no knowledge of future planned changes.
>>>>
>>>>  
>>>>
>>>> Is there a possibility for us to get an understanding of possible 
>>>> changes to the specifications? If possible, it could save us time 
>>>> and effort. It is also possible that we could propose changes for 
>>>> you to consider of the new version 2.0.
>>>>
>>>>  
>>>>
>>>> We would appreciate very much if you can propose a way forward in 
>>>> this matter.
>>>>
>>>>  
>>>>
>>>> Hälsningar/Regards/Grüße, Anders Törnqvist, Comfact AB +46 (0)768 15
>>>> 98 10
>>>>
>>>>  
>>>>
>>>> From: Juan Carlos Cruellas [mailto:cruellas@ac.upc.edu]
>>>> Sent: Monday, November 13, 2017 15:57
>>>> To: Pope, Nick  <mailto:nick.pope@thales-esecurity.com>
>>>> <nick.pope@thales-esecurity.com>; Andreas Kuehne 
>>>> <mailto:kuehne@trustable.de> <kuehne@trustable.de>
>>>> Cc: Anders Tornqvist  <mailto:anders@comfact.com> 
>>>> <anders@comfact.com>
>>>> Subject: Re: ETSI STF 539
>>>>
>>>>  
>>>>
>>>> Dear all,
>>>> Sorry for not reacting before.
>>>> Thank you very much for the message Nick.
>>>>
>>>> The DSS-X is certainly open to cooperate with ETSI under the 
>>>> umbrella of the MOU signed by OASIS and ETSI.
>>>>
>>>> As for the current activities that the DSS-X is performing, I would 
>>>> say that the most relevant is the review of the version 1.0 of the 
>>>> core protocol that should lead to the production of a new version 
>>>> 2.0 of
>>> the core.
>>>> Best regards
>>>> Juan Carlos Cruellas.
>>>> El 27/10/17 a las 13:41, Pope, Nick escribió:
>>>>
>>>> Juan Carlos, Andreas,
>>>>
>>>>  
>>>>
>>>> Can I introduce you to Anders Tornqvist from Comfact based in Sweden 
>>>> who has recently joined ETSI STF 539 on TSP component services 
>>>> supporting signature creation.
>>>>
>>>>  
>>>>
>>>> Part of his contribution to the STF will be looking at the use of 
>>>> OASIS DSS / DSSX protocols in the ETSI standards to be developed and 
>>>> liaising with OASIS.
>>>>
>>>>  
>>>>
>>>> Can you help in with getting to know the OASIS DSSX group and the 
>>>> activities that would be most relevant to the STF.
>>>>
>>>>  
>>>>
>>>> Best regards
>>>>
>>>>  
>>>>
>>>> Nick
>>>>
>>>>  
>>>>
>>>> From: Anders Tornqvist [mailto:anders@comfact.com]
>>>> Sent: 27 October 2017 08:46
>>>> To: Pope, Nick
>>>> Subject: ETSI STF 539
>>>>
>>>>  
>>>>
>>>> Hello Nick
>>>>
>>>>  
>>>>
>>>> Can you help me with contact details for Andrea Kuhn and Joan Carlos? 
>>>>
>>>> I would like to get in touch with them to start the OASIS liaison.
>>>>
>>>>  
>>>>
>>>> Hälsningar/Regards/Grüße, Anders Törnqvist, Comfact AB +46 (0)768 15
>>>> 98 10
>>>>
>>>>  
>>>>
>>>>  
>>>>
>>>>  
>>>>
>>>>
>>> --
>>> Andreas Kühne
>>> phone: +49 177 293 24 97
>>> mailto: kuehne@trustable.de
>>>
>>> Trustable Ltd. Niederlassung Deutschland Gartenheimstr. 39C - 30659 
>>> Hannover Amtsgericht Hannover HRB 212612
>>>
>>> Director Andreas Kühne
>>>
>>> Company UK Company No: 5218868 Registered in England and Wales
>>>
>>>
>>>
>> --
>> Andreas Kühne
>> phone: +49 177 293 24 97
>> mailto: kuehne@trustable.de
>>
>> Trustable Ltd. Niederlassung Deutschland Gartenheimstr. 39C - 30659 
>> Hannover Amtsgericht Hannover HRB 212612
>>
>> Director Andreas Kühne
>>
>> Company UK Company No: 5218868 Registered in England and Wales
>>
>>
>
>

-- 
Andreas Kühne 
phone: +49 177 293 24 97 
mailto: kuehne@trustable.de

Trustable Ltd. Niederlassung Deutschland Gartenheimstr. 39C - 30659 Hannover Amtsgericht Hannover HRB 212612

Director Andreas Kühne

Company UK Company No: 5218868 Registered in England and Wales

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]