[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [ubl-security] Re: [ubl] Re: Making references
Hi Ken, --- G. Ken Holman ha scritto: 7.0.1.0.2.20091201155241.02508030@wheresmymailserver.com" type="cite">At 2009-12-01 19:57 +0100, JAVEST by Roberto Cisternino wrote:mandatory is just the cac:Signature ID in case the aggregate is instantiated. And this ID can be validated by the XSD, but it is not sufficient. The extension is abstract... I do not want its ID to be mandatory at all, I just want use the extension to envelop the signature which is in another namespace and the cac:Signature is meant to specify where the signature instance is located. I really preferred xpointer because it was perfect to be used as an URI and there is no need to have a support by XML engines because the developer can just extract the xpath to query the signature nodes. The best should if XPath could be used as an URI directly... 7.0.1.0.2.20091201155241.02508030@wheresmymailserver.com" type="cite">But UBLExtensions are not only signatures and their ID cannot be mandatory at all... I think this is just a profile, exaclty what the guide for signatures is. The guide is to recommend how the UBL document must be used with a signature in a consistent way. If we add a specific container sig:Signature we have the possibility to have a mandatory ID... but the ext:ExtensionContent is not validated at all... as it is meant to be used with any namespace. So how we can validate a new mandatory sig:Signature/cbc:ID ? 7.0.1.0.2.20091201155241.02508030@wheresmymailserver.com" type="cite">This is a unique profile that talk about just the relationship between an UBL document and a generic enveloped signature. It is just to recommend a unique consistent way to express enveloped signatures with UBL. Specific e-Signature profiles available from bodies like ETSI are out of scope here because the ds:* namespace provides the signer to use every part of XAdES.Is optional like most of UBL IDs because it is up to profiles to decide which constraints are required... and subsetting or restrictions are not mandatory as we could just provide a value validation using Schematron in order to check such ID references (aka: business rules cross-references) 7.0.1.0.2.20091201155241.02508030@wheresmymailserver.com" type="cite">I mean the ID of the extension... extension are useful because are free and generic. The reference from cac:Signature is just to be used by software to locate the signature instance when provided inside the UBL Extension (enveloped signature use case) 7.0.1.0.2.20091201155241.02508030@wheresmymailserver.com" type="cite">Then I am confused. I understood the *existence* of the ID was mandatory, thus making it a schema constraint. You say "between two parts on the same document" and that, to me, is a value constraint and not an existence constraint. And I totally agree that a value constraint is a business rule and not a schema rule.The existance of the cac:Signature/cbc:ID is mandatory if a signature is referenced. We can have detached, enveloped or enveloping signatures. When the signature instance is enveloped we need to show its location in the best way we have. If the UBL document is expected to contain a signature and the signature cannot be found the document is not valid at all... and this is without XSD or Schematron validations... This is the third validation step, or if you prefere, the 1st. 7.0.1.0.2.20091201155241.02508030@wheresmymailserver.com" type="cite">I appreciate the effort but I think that if we do not move faster we will loose the train... 7.0.1.0.2.20091201155241.02508030@wheresmymailserver.com" type="cite">I agree 200% let's find the best road, but we need to provide concrete solutions. 5th December we had the possibility to see UBL and XAdES as a recognized signed document by the Italian P.A..... I am pretty sure we have just lost this. Actually in Italy only PDF/A and EDIFact are approved... Instead of UBL there will be an Italian XML format for the Invoice, including the XAdES signature and guidelines to start their adoption. UBL will be supported maybe later, maybe, and I have lost my time since 2006.................................... 7.0.1.0.2.20091201155241.02508030@wheresmymailserver.com" type="cite"> --
JAVEST by Roberto Cisternino * Document Engineering Services Ltd. - Alliance Member * UBL Italian Localization SubCommittee (ITLSC), co-Chair * UBL Online Community editorial board member (ubl.xml.org) * Italian UBL Advisor Roberto Cisternino
|
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]