OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

dss message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: CD text

At the last meeting it was agreed to progress the DSS Core text to CD with
the following changes:

Line 3522 ADD "at least"
Line 4322 ADD "at least"
Line 1476, or whenever occurs,
  - add after data object [XMLDsig]
Change 5.1.1 change as on the list:

Additional <ds:Reference> elements MUST appear for data objects [XMLSig]
being time-stamped. For details on further use of time-stamps, please refer
to appropiated profiles.

---

I have just noticed that one other error that was reported to the list (see
attached) was missed.  Since this is clearly an error, the <SignedObject>
referred to does not exist in the result, I propose that Stefan Drees be
requested to prepare CD text including the attached proposed change, for
final confirmation at the next DSS meeting on 24th.

Also, additions for xml:id should include "as defined in [xml:id]" and
"[xml:id] xml:id Version 1.0 W3C Recommendation 9 September 2005
http://www.w3.org/TR/xml-id/";
should be added to 8.1 Normative references.

Any objections?

Nick Pope
Mob: +44 (0) 777 567 2590
--- Begin Message ---
Stefan, All,
 
I have received this comment from someone who is implementing DSS pointing out an error.  What he states is I believe correct.   I sugest that this change he proposes be incorporated in the CD text.  Any objection?
 
Nick
 
 
-----Original Message-----
From: Carlos González-Cadenas [mailto:gonzalezcarlos@netfocus.es]
Sent: 29 March 2006 14:53
To: 'Nick Pope'
Subject: DSS SignRequest

Hi Nick,

 

We appreciate that the wording for Chapter 3.5.8 point 7 could be misleading

 

The <SignedObject> element of the result is set to point to the document with the same WhichDocument and XPath Expression as in the request

 

Questions / Remarks:

  • Is there any <SignedObject> element?
  • By contract, we have to return a <SignatureObject>. As the signature is enveloped within a document, we can use a <SignaturePtr> to point to the signature included within the document returned in the <DocumentWithSignature> optional output.
  • The XPath Expression included in the requests does not point to the signature, but to its parent/sibling node (depending on the usage of either XpathAfter or XpathFirstChildOf).

 

Maybe this one could be used (that is at least our understanding)

 

The <SignatureObject> element of the result MUST include a <SignaturePtr> element set to point to the document with the same WhichDocument as in the request and an XPath expression pointing to the newly created signature

 

Thanks in advance,

 

Carlos

 

Carlos González-Cadenas
Chief Security Officer

netfocus
Diagonal 188-198 Planta 2
08018 Barcelona
tel: 902 303 393
fax: 902 303 394
gonzalezcarlos@netfocus.es
www.netfocus.es

 

--- End Message ---

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]