OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

ebxml-msg message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]


Subject: Re: [ebxml-msg] Encryption/Encapsulation


David:

Can you please clarify what header elements, if present in the message being
encapsulated, need to be copied to the encapsulating message?

Also, if the purpose of the encapsulation is to have both the header
container and the payload container(s) of the original message encrypted,
are you assuming that all such encrypted messages destined for one PartyId
would be encrypted using the same encryption key and algorithm? Otherwise,
how can the encapsulated messages be properly decrypted by the same Service
(uri:www.oasis-open.org/messageService/)?

If the purpose of encapsulation is to send fragments of a large message as
multiple encapsulated messages, then the Receiving MSH must recombine the
fragments into the original message before "reprocessing it as a new
message".

Regards,
-Arvola
  -----Original Message-----
  From: David Fischer <david@drummondgroup.com>
  To: ebXML Msg <ebxml-msg@lists.oasis-open.org>
  Date: Sunday, November 11, 2001 9:03 AM
  Subject: [ebxml-msg] Encryption/Encapsulation


  We put off items 16, 50, & 97 because of backward compatibility.  Since
that is no longer an issue, I would like to propose the following section
addition.

  Regards,

  David Fischer
  Drummond Group

  ------------------------------------
  12                  Encapsulation
  Some implementations may require that ebXML messages be Encapsulated into
the payload of another ebXML message in a recursive fashion.  This might be
needed for encrypting a message where the headers need to be included in the
encryption with the payloads.  This might be useful when an intermediary
node needs to add a payload to an existing message without disturbing a
signature.  This might also be used to break very large messages, or
messages with large numbers of payloads, into smaller pieces for
transmission (how this is done is outside the scope of this specification).
These examples highlight some possible uses for Encapsulation but do not
encompass all possible uses.

  When the Encapsulation process is applied, the MSH shall put the original
message with the normal Multipart/Related content-type, as the payload of
another ebXML message.  If required, this Multipart/Related MIME structure
may be encrypted using an approved encryption process (XMLEncryption,
S/MIME, etc.).  A minimal set of headers shall be constructed, or copied
from the original message, for this message with:

        a Service element set to uri:www.oasis-open.org/messageService/

        an Action element set to Encapsulate

  These settings are NOT REQUIRED if the Receiving MSH can understand other
settings and correctly process the Encapsulated message.

  When the Receiving MSH parses this message, the Encapsulated payload
should be reprocessed as a new message, after decryption as necessary.




[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]


Powered by eList eXpress LLC