pki-guidelines message

Subject: Re: [pki-guidelines] Transaction PKI -The Browser Plugin"Silver Bullet"

From: Arshad Noor <arshad.noor@strongauth.com>
To: PKI Application Guidelines <pki-guidelines@lists.oasis-open.org>
Date: Mon, 02 Jan 2006 15:15:38 -0800

Would you care to elaborate why this does not work
technically, Anders?  I think I know where the gaps
are, but I am interested in understanding what you
perceive as being unworkable.  Please focus your
answers on the technology only without discussing
political or organizational issues.  Thanks.

Arshad Noor
StrongAuth, Inc.

Anders Rundgren wrote:

> Unfortunately it does not [technically] work as you claim.
> 

> ----- Original Message ----- 
> From: "Arshad Noor" <arshad.noor@strongauth.com>
> To: "PKI Application Guidelines" <pki-guidelines@lists.oasis-open.org>
> Sent: Monday, January 02, 2006 22:54
> Subject: Re: [pki-guidelines] Transaction PKI -The Browser Plugin "Silver Bullet"
> 
> 
> With the advent of XML, signText() is more than adequate, as
> long as form content is capable of being represented as an XML
> object, which is precisely what the IBM technology does through
> ECMAscript for XML.  So, the following is now possible:
> 
>    Form content + E4X = XML + signText() = XML Signature

Follow-Ups:
- Re: [pki-guidelines] Transaction PKI -The Browser Plugin "Silver Bullet"
  - From: "Anders Rundgren" <anders.rundgren@telia.com>

References:
- Transaction PKI -The Browser Plugin "Silver Bullet"
  - From: "Anders Rundgren" <anders.rundgren@telia.com>
- Re: [pki-guidelines] Transaction PKI -The Browser Plugin"Silver Bullet"
  - From: Arshad Noor <arshad.noor@strongauth.com>
- Re: [pki-guidelines] Transaction PKI -The Browser Plugin "Silver Bullet"
  - From: "Anders Rundgren" <anders.rundgren@telia.com>