EncryptedStore Format
0 views
Skip to first unread message
Axel Nennker
Feb 5, 2009, 5:19:14 PM2/5/09
to ICF-WG-OASIS
Probably not in the next but in following version of ISIP I would like
to have an EncryptedStore format that is xmlenc-only no ic:-namespace.
There is nothing in the definition of EncryptedStore (ISIP ed5 section
6.2 line 1538) that can not be expressed in xmlenc/xmldsig alone.
I suggest that an xmlenc expert formulates this definition.
Then in the future version of ISIP it should be allowed as an
alternative to the current definition abd it SHOULD be supported by
implementations.
By doing this we open a path for future changes and security fixes
that might be needed when the current crypto becomes weak.
Standard xmlenc libraries can then be used to handle the format ->
less proprietary code -> greater security
-Axel
to have an EncryptedStore format that is xmlenc-only no ic:-namespace.
There is nothing in the definition of EncryptedStore (ISIP ed5 section
6.2 line 1538) that can not be expressed in xmlenc/xmldsig alone.
I suggest that an xmlenc expert formulates this definition.
Then in the future version of ISIP it should be allowed as an
alternative to the current definition abd it SHOULD be supported by
implementations.
By doing this we open a path for future changes and security fixes
that might be needed when the current crypto becomes weak.
Standard xmlenc libraries can then be used to handle the format ->
less proprietary code -> greater security
-Axel
Reply all
Reply to author
Forward
0 new messages