Lists Home |
Date Index |
> XML canonicalisation. In particular, I want to avoid the complexities
> that result from combining XML 1.0 canonicalisation with namespaces
> (e.g. Exclusive XML canonicalization :-)
Once you done the work of C14N, exc-c14n isn't that much more. :)
Less flippantly, I took a look at RIG2 and skimmed RIG3. It seems like
the combination of limitations on xmlns (not at the docroot, no
bleed-thru, no use of alternate prefixes, etc) means that you're
essentially outlawing the ability to use a layered SOAP implementation.
Was that the intent?
Also requirement 25 in RIG2 (no superfluous declarations) seems
redundant since RIG2 already mandates RIG3.
Rich Salz, Chief Security Architect
DataPower Technology http://www.datapower.com
XS40 XML Security Gateway http://www.datapower.com/products/xs40.html
XML Security Overview http://www.datapower.com/xmldev/xmlsecurity.html