On 2025-04-13, at 16:37, Rohan Mahy <[email protected]> wrote: > > enveloped signature
That term has a meaning in XML, but “enveloped” appears to mean something different in CMS. So I’ll talk about “embedded” signatures. The problem with adding a map entry with a fixed map key is that you can’t have multiple embedded signatures in your data (or the value of the data needs to be an array). More generally speaking, please do think about and fully specify the actual transform you think you are using when erasing the signature before verifying it; don’t take that for granted. There is a semantic difference between multiple independent signatures and a countersignature, as detailed in RFC 9338 [1]. The countersignature must not erase the signature to be countersigned! Grüße, Carsten [1]: https://www.rfc-editor.org/rfc/rfc9338#section-1-2 _______________________________________________ COSE mailing list -- [email protected] To unsubscribe send an email to [email protected]
