|
Do you think that we should recommend just one? I've heard some people thinking that we should not avoid having detached signatures allowed.... Maybe we could recommend using the enveloped signature, but providing a mechanism for detached as an option.
REgards, Oriol
El 02/10/2009, a las 12:46, JAVEST by Roberto Cisternino escribiķ: I agree that we should show how the cac:Signature can be used to implement one of the XMLDSIG signature types, and if we do not recommend a specific type, we should explain why.
Cheers,
Roberto
---
Oriol Bausā ha scritto: 3C6CB881-233C-4D21-A563-E51852CF55A4@INVINET.ORG" type="cite">Hi Andrea,
The point is providing for both enveloped and detached signature, not just enveloped.
I would suggest a new table of contents for section3:
3 XML Digital Signature of UBL Documents
3.1 Requirements for Digital Signature in UBL
3.2 Enveloped Digital Signature
3.2.1 XML Signature method
3.2.2 Use of UBL cac:Signature element
3.2.3 Specific signature verification controls
3.3 Detached Digital Signature
3.3.1 XML Signature method
comment: No specific method for UBL when creating detached signatures
3.3.2 Use of UBL cac:Signature element
How the detached file can be referred from the ExternalReference/URI
3.3.3 Specific signature verification controls
As required...
I think this is another way to create valid signatures for UBL messages so I think we should identify this possibility in our report.
Regards, Oriol
El 01/10/2009, a las 17:12, Andrea Caccia escribiķ:
It seems interesting.
Can you explain better the scenario?
You mean also in this case inserting the signature in an UBL extension or
how the message and related signature can be tied together?
Regards,
Andrea
--------
This message is sent to one or more specific recipient. If you are not the
intended recipient, please notify the sender and delete this message.
--------
Questo messaggio č inviato a specifici destinatari. Se non siete i
destinatari, siete pregati di informare il mittente e cancellare questo
Messaggio.
-----Original Message-----
From: Oriol Bausā [mailto:ORIOL@INVINET.ORG]
Sent: Thursday, October 01, 2009 9:15 AM
To: ubl-security@lists.oasis-open.org
Subject: Re: [ubl-security] UBL Profile for XML Digital Signatures and XAdES
implementation V.01
Dear all,
I've been thinking on the UBL Profile for XML Digital Signatures
document and I think there is an improvement we can consider to add.
The point is that we have covered enveloped digital signatures inside
UBL Extensions. My point now is that we could also easily provide for
Detached Signatures with a little effort.
What do you think about this?
Regards, Oriol
---------------------------------------------------------------------
To unsubscribe from this mail list, you must leave the OASIS TC that
generates this mail. Follow this link to all your TCs in OASIS at:
https://www.oasis-open.org/apps/org/workgroup/portal/my_workgroups.php
---------------------------------------------------------------------
To unsubscribe from this mail list, you must leave the OASIS TC that
generates this mail. Follow this link to all your TCs in OASIS at:
https://www.oasis-open.org/apps/org/workgroup/portal/my_workgroups.php
Nessun virus nel messaggio in arrivo.
Controllato da AVG - www.avg.com
Versione: 8.5.409 / Database dei virus: 270.13.115/2405 - Data di rilascio: 09/30/09 10:35:00
-- JAVEST by Roberto Cisternino <Javest-Logo-1.1.gif> * Document Engineering Services Ltd. - Alliance Member * UBL Italian Localization SubCommittee (ITLSC), co-Chair * UBL Online Community editorial board member (ubl.xml.org) * Italian UBL Advisor Roberto Cisternino PPlease consider the environment before printing this email. |