OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help

dss-x message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Re: [dss-x] Suggested addition to DSS Core - Enumerate available keys

Am Mittwoch, 22. August 2007 schrieb Uri Resnitzky:

> I suggest we add a mechanism by which the client can query the server
> for a list of available keys which will be returned as <ds:KeyInfo>
> elements. This will enable the client to make an automated or a user
> interaction driven decision of which key it should use, and use it in a
> future DSS signature request in the <KeySelector> optional input.

I suggest to provide the requestor with further information on whether the 
identified key is a public key only or a key pair (or even a symmetric key). 
With the encryption profile in mind this makes sense, since the requestor 
might want to encrypt for a third party (recipient).

Just thinking aloud, this could be achieved by returning either
 - an extended ds:KeyInfo (with a type attribute) or
 - an extended dss:KeySelector (with a type attribute)
for every registered key.


Clemens Orthacker  A-SIT, Graz University of Technology
Inffeldgasse 16a, 8010 Graz, Austria
Tel: +43 316 873 5512         Web: http://www.a-sit.at/

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]