On Jun 20, 2005, at 11:17 PM, James M Snell wrote:
The thought here then is that feeds would not be considered atomic
units and that entry / elements can be pulled as is out of a
containing feed / element and passed around independently of it.
That's basically the idea, yes.
That really
OK, so given the arguments I previously posted in my response to Dan +
the assertion that digitally signing individual entries will be
necessary, the only real possible solution would be to come up with a
canonicalization scheme for digitally signed Atom entries. When applied
to an entry,
James M Snell wrote:
the ability to omit the author element from a contained entry / if the
containing feed has an author...
Signed entries should include a source element and that source element
should contain any of the feed level elements that the entry depends on.
This is one of the
On Monday, June 20, 2005, at 11:33 PM, James M Snell wrote:
OK, so given the arguments I previously posted in my response to Dan +
the assertion that digitally signing individual entries will be
necessary, the only real possible solution would be to come up with a
canonicalization scheme for
Paul Hoffman wrote:
At 2:15 PM -0700 6/20/05, James M Snell wrote:
The spec already allows enveloped XML signatures for the document.
Question: should we only allow signing of the entire document or are
there valid use cases for allowing each individual entry in the feed
to be
Here's a use-case:
I aggregate entries from several sources and create a composite feed. I
want entries that were signed in the source feeds to still carry their
original signatures in the composite feed, so that parsers can check
that the entry has not been modified since it was issued by
On 22/6/05 1:39 AM, Paul Hoffman [EMAIL PROTECTED] wrote:
One would also have to contend with the potential problems
introduced by namespace declarations with the feed. The bottom line
of this is that an entry with a signature could not simply be copied
over to a new containing feed
Eric Scheid wrote:
On 22/6/05 1:39 AM, Paul Hoffman [EMAIL PROTECTED] wrote:
One would also have to contend with the potential problems
introduced by namespace declarations with the feed. The bottom line
of this is that an entry with a signature could not simply be copied
over to a new