Re: Widget DigSign: Example of a distributor signature document is buggy
Hopefully further (correct) examples are here: http://dev.w3.org/2006/waf/widgets-digsig/tests/ http://dev.w3.org/2006/waf/widgets-digsig/tests/test-suite-unstable.xml Review is very welcome,
Re: Widget DigSign: Example of a distributor signature document is buggy
I think the first document should be re-titled (since it isn't generic to XML Signature 1.1): Widgets 1.0: Test Suite for Widget Signature 1.0 It also seems we have two types of tests: 1. syntactic tests that check the presence and placement of XML material - such as locating the signature in the widget package, syntax correctness, presence of required property elements, and use of Role attribute for author and distributor signatures. 2. Signature value verification when specific algorithms are used for a given input. regards, Frederick Frederick Hirsch Nokia On Oct 8, 2009, at 8:07 AM, ext Kai Hendry wrote: Hopefully further (correct) examples are here: http://dev.w3.org/2006/waf/widgets-digsig/tests/ http://dev.w3.org/2006/waf/widgets-digsig/tests/test-suite- unstable.xml Review is very welcome,
Re: Widget DigSign: Example of a distributor signature document is buggy
Christian You are correct, thank you for catching this error. I have updated the editors draft accordingly. http://dev.w3.org/2006/waf/widgets-digsig/#example regards, Frederick Frederick Hirsch Nokia On Oct 6, 2009, at 9:44 AM, ext Breitschwerdt, Christian, VF-Group wrote: Hi Marcos, The position of the object element in the example provided in http://www.w3.org/TR/widgets-digsig/ section 1.4 is not correct in that the object occurs before the SignatureValue. The DTD provided fo the XMLDIG11 http://www.w3.org/TR/2009/WD-xmldsig-core1-20090226/xmldsig-core-schema . dtd and also the example http://www.w3.org/TR/2009/WD-xmldsig-core1-20090226/signature-example.xm l instruct us that it should occur AFTER the SignatureValue. The major problem with the example is that even it is non-normative it may be used by implementors as a template, and some existing XML security tools chains (i.e. Apache XML security library) will fail to process a template that has the object in the wrong order. Kind regards, Christian
