Key Discovery In DTP Draft 3
Recordon, David
drecordon at verisign.com
Fri Jan 5 19:14:28 UTC 2007
Hey Grant,
I'm not sure if keys will really apply to a specific service element per
say. There certainly may be cases where they may, but in others someone
may want to define a generic key for their identifier. I think this is
however accomplished by placing the key in a "Service" element and
defining the "Type" element like I said as "Service" elements can always
have multiple "Type" elements.
3.2.5 of http://www.oasis-open.org/committees/download.php/17293 seems
to be most relevant, though still more focused on what SAML does for
signing the entire XRD versus what we're doing with Yadis.
--David
-----Original Message-----
From: grant.monroe at gmail.com [mailto:grant.monroe at gmail.com] On Behalf
Of Grant Monroe
Sent: Friday, January 05, 2007 10:53 AM
To: Recordon, David
Cc: Granqvist, Hans; Carl Howells; drummond.reed at cordance.net;
specs at openid.net
Subject: Re: Key Discovery In DTP Draft 3
On 1/5/07, Recordon, David <drecordon at verisign.com> wrote:
> Nope, it is still part of the "KeyInfo" element defined at
> http://www.w3.org/TR/2002/REC-xmldsig-core-20020212/#sec-KeyInfo.
Ok. I didn't realize that functionality was already defined. I think
that seems like a reasonable change. I can't say whether we would use
the KeyInfo object in the same way that the SAML guys do. I think that
we would just have the KeyInfo element as a child of the Service element
it applies to.
Drummond, can you provide a reference to the part of the specification
that describes using KeyInfo in XRD?
--
Grant Monroe
JanRain, Inc.
More information about the specs
mailing list