[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [wss] Issue 84 - Order of encryption and signature - Proposed Changes
I have a couple of specific thoughts below. I've elided proposed changes on
which I have nothing to say.
A generic issue. There are lots of uses of the phrase "the <wsse:Security>
header block" or similar that imply there is only one such header
block. We are supposed to be able to have more than one.
At 11:49 AM 6/2/2003, Hal Lockhart wrote:
>The intention is the following:
>
>o order of decryption and signature verification is determined by order of
>elements in the security header(s).
>o Decryption transform is not used
>o Tokens and STRs should be in the order for most convenient use
>o Schemes requiring alternate processing, such as forwarding cyphertext
>after having inspected the cleartext cannot be implied by the message format
>and must be the subject of out of band agreement.
>
>Specific changes to core 13:
>
>---
>Lines 842-843
>
>Current: For processing efficiency it is RECOMMENDED to have the signature
>added and then the security token pre-pended so that a processor can read
>and cache the token before it is used.
>
>New: Any Security Token elements or <wsse:SecurityTokenReference> elements
>required to validate the signature SHOULD placed in order to allow the most
^^
be
>convenient processing in a single pass. In most cases, this will mean
>placing them immediately before the <ds:Signature> element.
If I later add another signature using the same elements to supply key's,
etc. Should I place the signature after these auxilliary elements?
>---
>Lines 953-957
>
>Current: When a sender or an intermediary encrypts portion(s) of a SOAP
>message using XML Encryption they MUST prepend a sub-element to the
><wsse:Security> header block. Furthermore, the encrypting party MUST prepend
>the sub-element into the <wsse:Security> header block for the targeted
>recipient that is expected to decrypt these encrypted portions.
>
>New: When a sender encrypts portion(s) of a SOAP message using XML
>Encryption they MUST place a sub-element so that a recipient decrypting the
>data can determine the correct order of processing Signature and encryption
>elements by processing each in the order they appear in the message. In most
>cases, this will mean prepending the sub-element to the existing content of
>the <wsse:Security> header block. Furthermore, the encrypting party MUST
>insert the sub-element into the <wsse:Security> header block for the
>targeted recipient that is expected to decrypt these encrypted portions.
>---
I think an implication here is that an encrypted element can be addressed
to only one party. Is that intentional?
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]