6030 – Note on using xml:id should reference Canonical XML 1.1 and XML Signature, Second Edition

This is an archived snapshot of W3C's public bugzilla bug tracker, decommissioned in April 2019. Please see the home page for more details.

Bug 6030 - Note on using xml:id should reference Canonical XML 1.1 and XML Signature, Second Edition

Summary: Note on using xml:id should reference Canonical XML 1.1 and XML Signature, Se...

Status:	RESOLVED FIXED

Alias:	None

Product:	WS-Policy
Classification:	Unclassified
Component:	Primer (show other bugs)
Version:	PR
Hardware:	Macintosh MacOS X

Importance:	P2 normal
Target Milestone:	---
Assignee:	Felix Sasaki
QA Contact:	Web Services Policy WG QA List

URL:	http://www.w3.org/TR/2007/NOTE-ws-pol...
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2008-09-05 15:36 UTC by Frederick Hirsch
Modified:	2008-12-10 09:12 UTC (History)
CC List:	0 users

See Also:

Attachments

Description Frederick Hirsch 2008-09-05 15:36:15 UTC

Section 2.10 Referencing Policy Expressions after example 2.16 has same issue as framework, note needs to be replaced.

Description/Justification

Currently Section 2.10 Referencing Policy Expressions after example 2.16 contains a note that use of
Canonical XML 1.0 with xml:id is not appropriate. This is correct.

It has an additional Note that Canonical XML 1.1 is intended to address this
and that the XML Security Specifications Maintenance WG has been chartered to
investigate. This is no longer accurate since Canonical XML 11 has been
released as a Recommendation as has XML Signature (Second Edition).

Target - primer

Proposal

Create Proposed Errata against Primer document.

(Part 1) Replace the following text in Section 2.10 Referencing Policy Expressions after example 2.16:
---
Note:
Canonical XML 1.1 [C14N11] is intended to address the issues that occur with
Canonical XML 1.0 with regards to xml:id. The W3C XML Security Specifications
Maintenance WG has been chartered to address how to integrate Canonical XML 1.1
with XML Security, including XML Signature [SecSpecMaintWG] (See
http://www.w3.org/2007/xmlsec/.)
---
With the following text:
---
Note that is is acceptable to sign a policy expression identified using xml:id
with XML SIgnature (Second Edition) [XML-Signature-2ndEdition] and Canonical
XML 1.1 [C14N11], as these recommendations address issues related to the use
of xml:id and xml:base.
---
(Part 2)
Update the reference to C14N11 in Appendix C.

Replace the following:
---
Canonical XML 1.1, J. Boyer and G. Marcy Authors. W3C Candidate
Recommendation, 21 June 2007. This is a work in progress. This version is
available at http://www.w3.org/TR/2007/CR-xml-c14n11-20070621. The latest
version of Canonical XML 1.1 is available at http://www.w3.org/TR//xml-c14n11/.
---
with

Canonical XML 1.1, J. Boyer and G. Marcy Authors. W3C Recommendation, 2 May
2008. This version is available at
http://www.w3.org/TR/2008/REC-xml-c14n11-20080502. The latest version of
Canonical XML 1.1 is available at http://www.w3.org/TR//xml-c14n11/.

---

(Part 3)
Add a reference to Appendix C for XML Signature (Second Edition) :
----
[XML-Signature-2ndEdition] XML Signature Syntax and Processing, D. Eastlake, J.
Reagle, D. Solo, F. Hirsch, and T. Roessler Editors. W3C Recommendation, 10
June 2008. This version of the XML Signature Syntax and Processing
Recommendation is http://www.w3.org/TR/2008/REC-xmldsig-core-20080610/. The
latest version of XML-Signature Syntax and Processing is available at
http://www.w3.org/TR/xmldsig-core/.
----
(note removal of hyphen in title in Second Edition)

---
(Part 4) Remove [SecSpecMaintWG] reference.
----

Comment 1 Frederick Hirsch 2008-12-10 09:12:35 UTC

created at posted errata. Errata linked from WS-Policy WG 
home page http://www.w3.org/2002/ws/policy/
errata http://www.w3.org/2002/ws/policy/7/primer-errata.html