[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [dss] Core issues
At 02:25 PM 4/1/2004 -0500, Rich Salz wrote:
>>>Could we fit all DSS messages into the XKMS request/response types?
>>I'm not sure exactly what you mean?
>
>Make all request and response messages derive from the
>RequestAbstractType, Result, and PendingRequest types defined in the xkms
>schema.
That would add a lot of "stuff" to the protocol:
- optional <ds:Signature> that can cover the request (why not use XKMS?)
- optional opaque client data to be returned by the server (?)
- URI of the target web service (?)
- optional nonce (doesn't the Id serve this purpose?)
- <RespondWith> which we'd have to re-interpret to say "respond with a
signature", "respond with a validation result"..
- Some "extended protocol mechanisms":
- aysnchronous requests/responses
- 2-phase requests/responses (to prevent DoS by a lightweight
authentication)
- compound requests/responses
I'd rather not add so much new stuff at this late date. Even if I agreed
with or understood all of it, which I'm not sure I do.
Trevor
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]