ISSUE-49: No support for derived keys in XML Dsig, XML Enc
DerivedKeyType
No support for derived keys in XML Dsig, XML Enc
- State:
- CLOSED
- Product:
- XML Security 1.1 Requirements and Design Considerations
- Raised by:
- Magnus Nyström
- Opened on:
- 2008-08-28
- Description:
- Neither XML DSig or XML Enc supports the concept of derived keys.
There are several cases when this lack of support is an issue. For
example, when encryption or message authentication is based on
passwords. Another example is when a master key is all that is shared
between communicating parties and avoidance of using this master key
for direct protection is desired.
A separate email will provide an analysis of the use of derived keys in some existing WS * specifications, and compare the functionality in those specification with an alternative, based on a set of requirements. - Related Actions Items:
- No related actions
- Related emails:
- Re: ISSUE-48 (DerivedKeyType): No support for derived keys in XML Dsig, XML Enc [Rqmts (XML Signature and Canonicalization V Next Requirements)] (from frederick.hirsch@nokia.com on 2008-11-07)
- Action: A need to address requirements listed as Issues (from gerald.edgar@boeing.com on 2008-09-22)
- Re: ISSUE-48 (DerivedKeyType): No support for derived keys in XML Dsig, XML Enc [Rqmts (XML Signature and Canonicalization V Next Requirements)] (from magnus@rsa.com on 2008-08-28)
- ISSUE-49 (DerivedKeyType): No support for derived keys in XML Dsig, XML Enc [Rqmts (XML Signature and Canonicalization V Next Requirements)] (from sysbot+tracker@w3.org on 2008-08-28)
Related notes:
No additional notes.
Display change log