OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

wss message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]


Subject: Re: [wss] Interop 2 - First Draft (.doc & .pdf)


At 03:41 PM 7/28/2003, Hal Lockhart wrote:
Comments please.

These scenarios use KeyInfo elements containing SecurityTokenReference elements.  This is not endorsed by version 6 of the X509 profile which uses various ds: elements. 

For example the X509 profile says

An X.509 signature verification certificate SHALL be contained in a
wsse:BinarySecurityToken element and SHALL be referenced by means of a
ds:KeyName element whose value SHALL be identical to the value of the wsu:Id
attribute in the wsse:BinarySecurityToken element. See example below.

Example 3.4.4 is the intop document seems to violate this requirement.


Hal


You may leave a Technical Committee at any time by visiting http://www.oasis-open.org/apps/org/workgroup/wss/members/leave_workgroup.php


[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]