<html><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><div>Most enterprise deployments (think banks, telcos etc.) that use SAML for</div><div>SSO deployments do use XML DSig. It is not such a big deal.</div><div><br></div><div>Hubert</div><div><br></div><br><div><div>On Jun 15, 2009, at 4:24 PM, Santosh Rajan wrote:</div><br class="Apple-interchange-newline"><blockquote type="cite"><div><br>Let me put this in perspective before before we start going in all<br>directions.<br><br>The whole purpose of XRD was to simplify XRDS. By adding XML-Dsig you are<br>going back to square A. We might as well stick to XRDS then.<br><br>The idea of XRD was KISS - "Keep it simple stupid".<br><br><br><br>Hans Granqvist wrote:<br><blockquote type="cite"><br></blockquote><blockquote type="cite"><br></blockquote><blockquote type="cite">Haha, this is funny. Surely the volume of XRD messages vastly<br></blockquote><blockquote type="cite">outnumbers the billions of daily signed SOAP and SAML messages. :)<br></blockquote><blockquote type="cite"><br></blockquote><br>Can you give me one example where "XML Dsig signed SOAP and SAML" is being<br>used by millions of users in a network?<br><br><br><br><blockquote type="cite">Seriously, why are you knocking down a standard that actually has<br></blockquote><blockquote type="cite">proven itself to work pretty well considering the set of difficulties<br></blockquote><blockquote type="cite">inherent in using an abstract format like XML?<br></blockquote><blockquote type="cite"><br></blockquote><br>I am not knocking it down. A whole lot of people seem to be unhappy with<br>XML-Dsig. You read about it every where you read about XMLDSig. Try<br>wikipedia for starters.<br><br><br><br><blockquote type="cite">Perhaps a different concrete representation (json?) would be easier to<br></blockquote><blockquote type="cite">sign?<br></blockquote><blockquote type="cite"><br></blockquote><br>JSON is a great idea as long as you sign it as is, and apply the<br>Content-Type, so that it is not modified in transit.<br><br><br><br>-----<br><br>Santosh Rajan<br><a href="http://santrajan.blogspot.com">http://santrajan.blogspot.com</a> <a href="http://santrajan.blogspot.com">http://santrajan.blogspot.com</a> <br>-- <br>View this message in context: <a href="http://www.nabble.com/Signing-method-for-XRD-tp23956678p24035560.html">http://www.nabble.com/Signing-method-for-XRD-tp23956678p24035560.html</a><br>Sent from the OpenID - General mailing list archive at Nabble.com.<br><br>_______________________________________________<br>general mailing list<br><a href="mailto:general@openid.net">general@openid.net</a><br>http://openid.net/mailman/listinfo/general<br></div></blockquote></div><br><div apple-content-edited="true"> <span class="Apple-style-span" style="border-collapse: separate; color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; orphans: 2; text-align: auto; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px; -webkit-border-horizontal-spacing: 0px; -webkit-border-vertical-spacing: 0px; -webkit-text-decorations-in-effect: none; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px; "><div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><span class="Apple-style-span" style="border-collapse: separate; color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; orphans: 2; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px; -webkit-border-horizontal-spacing: 0px; -webkit-border-vertical-spacing: 0px; -webkit-text-decorations-in-effect: none; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px; "><div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><span class="Apple-style-span" style="border-collapse: separate; color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; orphans: 2; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px; -webkit-border-horizontal-spacing: 0px; -webkit-border-vertical-spacing: 0px; -webkit-text-decorations-in-effect: none; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px; "><div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><span class="Apple-style-span" style="border-collapse: separate; color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; orphans: 2; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px; -webkit-border-horizontal-spacing: 0px; -webkit-border-vertical-spacing: 0px; -webkit-text-decorations-in-effect: none; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px; "><div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><span class="Apple-style-span" style="border-collapse: separate; color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; orphans: 2; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px; -webkit-border-horizontal-spacing: 0px; -webkit-border-vertical-spacing: 0px; -webkit-text-decorations-in-effect: none; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px; "><div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><span class="Apple-style-span" style="border-collapse: separate; color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; orphans: 2; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px; -webkit-border-horizontal-spacing: 0px; -webkit-border-vertical-spacing: 0px; -webkit-text-decorations-in-effect: none; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px; "><div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; ">--</div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; ">Hubert A. Le Van Gong</div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; min-height: 14px; ">Identity Architect</div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; ">Sun microsystems, Inc.</div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; "><br></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; "><br></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; ">17 Rue Duprey</div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; ">Grenoble, 38000</div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; ">France</div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; min-height: 14px; "><br></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; ">--------------------------------------------------</div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; ">email: <a href="mailto:hubert.levangong@sun.COM">hubert.levangong@sun.COM</a></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; ">tel:+33 4 7663 0935</div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; ">blog: <span class="Apple-style-span" style="color: rgb(20, 79, 174); "><span class="Apple-style-span" style="text-decoration: underline; -webkit-text-decorations-in-effect: underline; "><a href="http://blog.levangong.com/">http://blog.levangong.com/</a></span></span></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; min-height: 14px; "><div><font class="Apple-style-span" color="#144FAE"><span class="Apple-style-span" style="text-decoration: underline; "><br></span></font></div></div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; ">N 45 12.011'</div><div style="margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; ">W 005 44.217'</div></div></span></div></span></div></span></div></span></div></span></div></span> </div><br></body></html>