keyprov-1----Page:4
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20
|
Topic 1: Use of xmlenc / xmldsig Main issue: shall we leverage more XMLEnc for encryption key entry and encrypted value definition? Received various comments from Magnus and Andrea from RSA to increase use of xmlenc and xmldsig in PSKC spec Use ds:KeyInfo as the type to define the wrapping key Use pkcs-5 xml schema for PBE parameters Use xenc:EncryptedDataType as the carrier of the wrapped keys No need for digest if key wrapping algorithms are used that preserve integrity The original design goal of PSKC is to keep it simple and small size without relying on extensive XMLEnc and XMLDsig schema |