[xmlsec] xmlsec 's future
ed.shallow at rogers.com
ed.shallow at rogers.com
Fri Apr 21 07:01:51 PDT 2006
Hello,
On your last question, RFC3161 timestamps are by definition PKCS7 ASN1 binary signatures. The only XMLDSIG-based timestamp I am aware of is from the OASIS DSS Technical Committee at
http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=dss
I have used xmlsec to create dss:Timestamps without problems.
Ed
----- Original Message ----
From: 野口隆弘 <t.noguchi at pfu.fujitsu.com>
To: Aleksey Sanin <aleksey at aleksey.com>
Cc: tnoguchi <tnoguchi at bh.wakwak.com>; t.noguchi <t.noguchi at jcsinc.co.jp>; xmlsec at aleksey.com; machida at jcsinc.co.jp
Sent: Friday, April 21, 2006 12:10:01 AM
Subject: [xmlsec] xmlsec 's future
Hi, Aleksey,
What do you think future image of xmlsec?
You did update hash algorithms with OpnSSL.
Is this enhancement were measures for NIST sha-1 announce?
http://www.csrc.nist.gov/pki/HashWorkshop/NIST%20Statement/Burr_Mar2005.html
But the CAs and IC card vendor could not upgrade algorithms soon.
Because it depend on OS function and IC chip. So, the TSA did upgrade
algorithms and
wrap signature by new algorithms timestamp.
www.e-timestamp.com and www.pfutsa.net already support RSA2048bit and SHA-2
algorithms timestamp. The pfutsa.net is japanese site....
And TSAs has SDK for own service.
Will you support RFC3161 timestamp on xmlsec?
Takahiro
_______________________________________________
xmlsec mailing list
xmlsec at aleksey.com
http://www.aleksey.com/mailman/listinfo/xmlsec
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.aleksey.com/pipermail/xmlsec/attachments/20060421/e0c3a268/attachment-0002.htm
More information about the xmlsec
mailing list