[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: XACML OID tag?

To: Rich Salz <rsalz@xxxxxxxxxx>
Subject: Re: XACML OID tag?
From: Phil Griffin <phil.griffin@xxxxxxxxx>
Date: Tue, 11 Sep 2001 18:02:17 -0400
Cc: Bob Jueneman <bjueneman@xxxxxxxxxx>, ietf-pkix@xxxxxxx
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Organization: Griffin Consulting
References: <> <> <>
Sender: owner-ietf-pkix@xxxxxxxxxxxx

Rich,

CXER can be related to signing canonical XML
encodings of ASN.1 values. It has not been
targeted at all to the workings of XMLDSIG.

But a canonical encoding of an ASN.1 value
can be carried easily in an ASN.1 value, say
an attribute or extension using

Payload ::= 
   OCTET STRING (CONTAINING UTF8String 
                    ENCODED BY xml)

where "xml" is an object identifier. There are
many other useful variants that can be processed
by XML-aware ASN.1 tools.

Phil Griffin

Rich Salz wrote:
> 
> How does CXER relate to the the XML Canoinicalization spec, designed as
> part of XML DSIG?
> 
> I hope the answer is "the same," but I doubt it. :(
>         /r$
> 
> --
> Zolera Systems, Your Key to Online Integrity
> Securing Web services: XML, SOAP, Dig-sig, Encryption
> http://www.zolera.com

Follow-Ups:
- Re: XACML OID tag?
  - From: Rich Salz

References:
- XACML OID tag?
  - From: Bob Jueneman
- Re: XACML OID tag?
  - From: Phil Griffin
- Re: XACML OID tag?
  - From: Rich Salz

Prev by Date: Re: XACML OID tag?
Next by Date: Re: XACML OID tag?
Previous by thread: Re: XACML OID tag?
Next by thread: Re: XACML OID tag?
Index(es):
- Date
- Thread