[Cfrg] Request for IETF community review of XML Security Specifications

[David McGrew <mcgrew at cisco.com>]

Re-posting from SAAG to CFRG.  

On Mar 1, 2009, at 7:47 AM, Thomas Roessler wrote:

FYI, W3C has published initial working drafts for a number of documents related to XML Signature and Encryption:

1. Incremental revisions of XML Signature and Encryption.  These revisions focus on adding markup and algorithm support for EC DSA (at the same time addressing some known issues with RFC 4050).  We would appreciate early comment from the IETF community.

2. Markup for derived keys.  This document, too, is one that could use review from the IETF community.

3. A requirements and design document for a possible version 2 of XML Signature.  This document focuses on attempting to devise a simpler transform model for XML Signature, in order to remove some of the complexity of the current specification.

The full list of drafts released is in the message quoted below.

If you have any questions, please feel free to contact Frederick or me.

Thanks,

--

Thomas Roessler, W3C  <tlr at w3.org>

Begin forwarded message:

From: Frederick Hirsch <frederick.hirsch at nokia.com>

Date: 26 February 2009 12:09:26 GMT-06:00

To: chairs at w3.org, XMLSec WG Public List <public-xmlsec at w3.org>

Cc: Frederick Hirsch <Frederick.Hirsch at nokia.com>

Subject: FPWD Transition Announcement -  XML Security Specifications

Archived-At: <http://www.w3.org/mid/52EDBA7C-232C-47FF-B906-184206F8E312 at nokia.com>

This is a First Public Working Draft transition announcement from the XML Security WG.

The following seven specifications have been published as First Public Working Drafts and the WG requests feedback on these documents. Comment may be sent to the list public-xmlsec-comments at w3.org .  If possible please indicate the document in the subject line. 

  

(1) XML Signature Syntax and Processing Version 1.1

http://www.w3.org/TR/2009/WD-xmldsig-core1-20090226/

(2) XML Encryption Syntax and Processing Version 1.1
 http://www.w3.org/TR/2009/WD-xmlenc-core1-20090226/

(3) XML Signature Transform Simplification: Requirements and Design
http://www.w3.org/TR/2009/WD-xmldsig-simplify-20090226/

(4) XML Security Use Cases and Requirements
http://www.w3.org/TR/2009/WD-xmlsec-reqs-20090226/

(5) XML Security Derived Keys
http://www.w3.org/TR/2009/WD-xmlsec-derivedkeys-20090226/

(6) XML Signature Properties
http://www.w3.org/TR/2009/WD-xmldsig-properties-20090226/

(7) XML Security Algorithm Cross-Reference

http://www.w3.org/TR/2009/WD-xmlsec-algorithms-20090226/

These were included in the following transition request:

http://lists.w3.org/Archives/Member/chairs/2009JanMar/0087.html

The Working Group has also published an updated working draft of Best Practices:

(8) XML Signature Best Practices W3C Working Draft 26 February 2009
http://www.w3.org/TR/2009/WD-xmldsig-bestpractices-20090226/

The Working Group would appreciate review of these documents, with special attention to the algorithms listed in XML Signature 1.1 and XML Encryption 1.1, the proposed 2.0 changes in the Transform Simplification document and Use Cases and Requirements. Again, comment may be sent to the list public-xmlsec-comments at w3.org .

Thank you

regards, Frederick

Frederick Hirsch, Nokia

Chair XML Security WG

_______________________________________________
saag mailing list
saag at ietf.org
https://www.ietf.org/mailman/listinfo/saag