OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

dss-x message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: FW: [dss-dev] ds:Reference @URI attribute

Any thoughts on this question from Pim?

-----Original Message-----
From: Pim van der Eijk [mailto:lists@sonnenglanz.net] 
Sent: 29 August 2007 08:43
To: dss-dev@lists.oasis-open.org
Subject: [dss-dev] ds:Reference @URI attribute


In a ds:Signature, enveloped in a dss:SignatureObject in a dss:SignResponse,
can or should the URI attribute be present?  If yes, what should be its

According to http://www.w3.org/TR/2002/REC-xmldsig-core-20020212/#sec-URI, I
would assume the attribute could be omitted as "the receiving application is
expected to know the identity of the object", via the link between the
SignResponse document to its corresponding SignRequest document.  Is that

If there are multiple dss:Document elements in a dss:InputDocuments
structure, how does one correlate a ds:Signature element in a
dss:SignResponse to the corresponding dss:Document in the dss:SignRequest?

My first idea was to use the value of the ID attribute on the dss:Document
in dss:InputDocuments. However, ID is an XML ID type attribute, and the URI
attribute has type anyURI. The ID attribute will not be in the
dss:SignResponse when the document to be signed is included in the
SignRequest but not in the SignResponse (which happens when not using the
DocumentWithSignature output element). 


To unsubscribe, e-mail: dss-dev-unsubscribe@lists.oasis-open.org
For additional commands, e-mail: dss-dev-help@lists.oasis-open.org
Consider the environment before printing this mail.
"Thales e-Security Limited is incorporated in England and Wales with company
registration number 2518805. Its registered office is located at 2 Dashwood
Lang Road, The Bourne Business Park, Addlestone, Nr. Weybridge, Surrey KT15
The information contained in this e-mail is confidential. It may also be
privileged. It is only intended for the stated addressee(s) and access to it
by any other person is unauthorised. If you are not an addressee or the
intended addressee, you must not disclose, copy, circulate or in any other
way use or rely on the information contained in this e-mail. Such
unauthorised use may be unlawful. If you have received this e-mail in error
please delete it (and all copies) from your system, please also inform us
immediately on +44 (0)1844 201800 or email postmaster@thales-esecurity.com.
Commercial matters detailed or referred to in this e-mail are subject to a
written contract signed for and on behalf of Thales e-Security Limited". 

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]