[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: FW: [dss-dev] ds:Reference @URI attribute
Any thoughts on this question from Pim? Nick -----Original Message----- From: Pim van der Eijk [mailto:lists@sonnenglanz.net] Sent: 29 August 2007 08:43 To: dss-dev@lists.oasis-open.org Subject: [dss-dev] ds:Reference @URI attribute Hello, In a ds:Signature, enveloped in a dss:SignatureObject in a dss:SignResponse, can or should the URI attribute be present? If yes, what should be its value? According to http://www.w3.org/TR/2002/REC-xmldsig-core-20020212/#sec-URI, I would assume the attribute could be omitted as "the receiving application is expected to know the identity of the object", via the link between the SignResponse document to its corresponding SignRequest document. Is that correct? If there are multiple dss:Document elements in a dss:InputDocuments structure, how does one correlate a ds:Signature element in a dss:SignResponse to the corresponding dss:Document in the dss:SignRequest? My first idea was to use the value of the ID attribute on the dss:Document in dss:InputDocuments. However, ID is an XML ID type attribute, and the URI attribute has type anyURI. The ID attribute will not be in the dss:SignResponse when the document to be signed is included in the SignRequest but not in the SignResponse (which happens when not using the DocumentWithSignature output element). Pim --------------------------------------------------------------------- To unsubscribe, e-mail: dss-dev-unsubscribe@lists.oasis-open.org For additional commands, e-mail: dss-dev-help@lists.oasis-open.org Consider the environment before printing this mail. "Thales e-Security Limited is incorporated in England and Wales with company registration number 2518805. Its registered office is located at 2 Dashwood Lang Road, The Bourne Business Park, Addlestone, Nr. Weybridge, Surrey KT15 2NX. The information contained in this e-mail is confidential. It may also be privileged. It is only intended for the stated addressee(s) and access to it by any other person is unauthorised. If you are not an addressee or the intended addressee, you must not disclose, copy, circulate or in any other way use or rely on the information contained in this e-mail. Such unauthorised use may be unlawful. If you have received this e-mail in error please delete it (and all copies) from your system, please also inform us immediately on +44 (0)1844 201800 or email postmaster@thales-esecurity.com. Commercial matters detailed or referred to in this e-mail are subject to a written contract signed for and on behalf of Thales e-Security Limited".
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]