OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

office message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


Subject: [OASIS Issue Tracker] Commented: (OFFICE-3417) NEEDS-DISCUSSION:Public Comment: Comment on ODF v1.2 CD 05 - Document Signatures



    [ http://tools.oasis-open.org/issues/browse/OFFICE-3417?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=21532#action_21532 ] 

Dennis Hamilton commented on OFFICE-3417:
-----------------------------------------

For me, this is a definite Resolved: No Action.  

There is more involved than just the name, and our support for XaDES should be better, based on what David LeBlanc just posted to the list.

If it is not worth doing now, how can it be an improvement to do it later?  It seems to me that we want to make what we already have in the works solid and, if the other folks want to make a proposal to ODF-next, they are free to do so when their thinking is more advanced and they have our latest work (In ODF 1.2) to consider, and have said more about how they propose to handle URI references to components of the package within the package for DSig in this case (since they don't say).

Here is the David LeBlanc comment <http://lists.oasis-open.org/archives/office/201009/msg00505.html>:

As you point out, it looks like they're trying to implement countersigning. Countersigning is already part of XAdES, and done in a way that's easier to implement (IMHO). To go back to a much earlier discussion, the more ways there are to do the same thing, the more difficult it will be to interoperate and have correct implementations.

BTW, in XAdES, it is possible to have fairly arbitrary trees of signatures where a base signature could have more than one countersignature on the base signature, and each of those can have countersignatures as well. I also don't think there would be anything stopping a countersignature from signing multiple countersignatures along with the base signature, either.

Given that we already have that flexibility, and it is very well defined, where this proposed mechanism is still a bit self-contradictory, I'd tend to stick with XAdES as a countersignature mechanism.




> NEEDS-DISCUSSION: Public Comment: Comment on ODF v1.2 CD 05 - Document Signatures
> ---------------------------------------------------------------------------------
>
>                 Key: OFFICE-3417
>                 URL: http://tools.oasis-open.org/issues/browse/OFFICE-3417
>             Project: OASIS Open Document Format for Office Applications (OpenDocument) TC
>          Issue Type: Bug
>          Components: Packaging, Security
>    Affects Versions: ODF 1.2 CD 05
>            Reporter: Robert Weir 
>             Fix For: ODF 1.2 CD 06
>
>
> Copied from office-comment list
> Original author: "Pope, Nick" <Nick.Pope@thales-esecurity.com> 
> Original date: 6 Sep 2010 19:48:26 -0000
> Original URL: http://lists.oasis-open.org/archives/office-comment/201009/msg00001.html

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://tools.oasis-open.org/issues/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

        


[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]