I have some concerns about hashing XML without doing some kind of canonicalization first -- namely, will it work in practice? I don't know. If it does, great, c14n is generally expensive.
We wrote a draft I-D on security processing for Atom nearly a year ago.
Not much interest anywhere, but I still think it's pretty good. :)
https://datatracker.ietf.org/idst/status.cgi?submission_id=17333
/r$
--
STSM, WebSphere Appliance Architect
https://www.ibm.com/developerworks/mydeveloperworks/blogs/soma/
