|
1.
|
Clear description of the referenced document:
|
|
|
|
|
2.
|
Status of approval:
|
|
|
W3C Recommendation of 10 December 2002
|
|
3.
|
Justification for the specific reference:
|
|
|
XMLENC can be used with SOAP/HTTP binding (Annex C)
|
|
4.
|
Current information, if any, about IPR issues:
|
|
|
W3C is a Royalty Free organization. Identification of patent policy is available on the Web page http://www.w3.org/2004/01/pp-impl/
|
|
5.
|
Other useful information describing the "Quality" of the document:
|
|
|
Document published in December 2002 (http://www.w3.org/TR/xmlenc-core/). Status is Recommendation.
|
|
6.
|
The degree of stability or maturity of the document:
|
|
|
Document published in December 2002. Latest version: http://www.w3.org/TR/xmlenc-core/.
|
|
7.
|
Relationship with other existing or emerging documents:
|
|
|
|
|
8.
|
Any explicit references within that referenced document should also be listed:
|
|
|
TRIPLEDES /
ANSI X9.52: Triple Data Encryption Algorithm Modes of Operation. 1998. /
AES /
NIST FIPS 197: Advanced Encryption Standard (AES). November 2001. /
http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf /
AES-WRAP /
RFC3394: Advanced Encryption Standard (AES) Key Wrap Algorithm. J. Schaad and R. Housley. Informational, September 2002. /
CMS-Algorithms /
RFC3370: Cryptographic Message Syntax (CMS) Algorithms. R. Housley. Informational, February 2002. /
http://www.ietf.org/rfc/rfc3370.txt /
CMS-Wrap /
RFC3217: Triple-DES and RC2 Key Wrapping. R. Housley. Informational, December 2001. /
http://www.ietf.org/rfc/rfc3217.txt /
Davis /
Defective Sign & Encrypt in S/MIME, PKCS#7, MOSS, PEM, PGP, and XML. D. Davis. USENIX Annual Technical Conference. 2001. /
http://www.usenix.org/publications/library/proceedings/usenix01/davis.html /
DES /
NIST FIPS 46-3: Data Encryption Standard (DES). October 1999. /
http://csrc.nist.gov/publications/fips/fips46-3/fips46-3.pdf /
EncReq /
XML Encryption Requirements. J. Reagle. W3C Note, March 2002. /
http://www.w3.org/TR/2002/NOTE-xml-encryption-req-20020304 /
ESDH /
RFC 2631: Diffie-Hellman Key Agreement Method. E. Rescorla. Standards Track, 1999. /
http://www.ietf.org/rfc/rfc2631.txt /
http://www.w3.org/TR/2002/CR-xml-exc-c14n-20020212 /
Glossary /
RFC 2828: Internet Security Glossary. R Shirey. Informational, May 2000. /
http://www.ietf.org/rfc/rfc2828.txt /
HMAC /
RFC 2104: HMAC: Keyed-Hashing for Message Authentication. H. Krawczyk, M. Bellare, and R. Canetti. Informational, February 1997. /
http://www.ietf.org/rfc/rfc2104.txt /
HTTP /
RFC 2616: Hypertext Transfer Protocol -- HTTP/1.1. J. Gettys, J. Mogul, H. Frystyk, L. Masinter, P. Leach, and T. Berners-Lee. Standards Track, June 1999. /
http://www.ietf.org/rfc/rfc2616.txt /
KEYWORDS /
RFC 2119: Key words for use in RFCs to Indicate Requirement Levels. S. Bradner. Best Current Practice, March 1997. /
http://www.ietf.org/rfc/rfc2119.txt /
MD5 /
RFC 1321: The MD5 Message-Digest Algorithm. R. Rivest. Informational, April 1992. /
http://www.ietf.org/rfc/rfc1321.txt /
MIME /
RFC 2045: Multipurpose Internet Mail Extensions (MIME) Part One: Format of Internet Message Bodies. N. Freed and N. Borenstein. Standards Track, November 1996. /
http://www.ietf.org/rfc/rfc2045.txt /
MIME-REG /
RFC 2048: Multipurpose Internet Mail Extensions (MIME) Part Four: Registration Procedures. N. Freed, J. Klensin, and J. Postel. Best Current Practice, November 1996. /
http://www.ietf.org/rfc/rfc2048.txt /
NFC /
TR15, Unicode Normalization Forms. M. Davis and M. Dürst. Revision 18: November 1999. /
http://www.unicode.org/unicode/reports/tr15/tr15-18.html. /
NFC-Corrigendum /
Corrigendum #2: Yod with Hiriq Normalization. /
http://www.unicode.org/versions/corrigendum2.html. /
prop1 /
XML Encryption strawman proposal. E. Simon and B. LaMacchia. Aug 2000. /
http://lists.w3.org/Archives/Public/xml-encryption/2000Aug/0001.html /
prop2 /
Another proposal of XML Encryption. T. Imamura. Aug 2000. /
http://lists.w3.org/Archives/Public/xml-encryption/2000Aug/0005.html /
prop3 /
XML Encryption Syntax and Processing. B. Dillaway, B. Fox, T. Imamura, B. LaMacchia, H. Maruyama, J. Schaad, and E. Simon. December 2000. /
http://lists.w3.org/Archives/Public/xml-encryption/2000Dec/att-0024/01-XMLEncryption_v01.html /
PKCS1 /
RFC 2437: PKCS #1: RSA Cryptography Specifications Version 2.0. B. Kaliski and J. Staddon. Informational, October 1998. /
http://www.ietf.org/rfc/rfc2437.txt /
RANDOM /
RFC 1750: Randomness Recommendations for Security. D. Eastlake, S. Crocker, and J. Schiller. Informational, December 1994. /
http://www.ietf.org/rfc/rfc1750.txt /
RIPEMD-160 /
CryptoBytes, Volume 3, Number 2. The Cryptographic Hash Function RIPEMD-160. RSA Laboratories. Autumn 1997. /
ftp://ftp.rsasecurity.com/pub/cryptobytes/crypto3n2.pdf /
http://www.esat.kuleuven.ac.be/~cosicart/pdf/AB-9601/AB-9601.pdf /
SHA /
Secure Hash Standard. NIST FIPS 180-1. (RFC 3174). April 1995. /
http://www.itl.nist.gov/fipspubs/fip180-1.htm /
Secure Hash Standard. NIST Draft FIPS 180-2. 2001. (Extended to include SHA-384, SHA-256, and SHA-512) /
http://csrc.nist.gov/encryption/shs/dfips-180-2.pdf /
Tobin /
R. Tobin. Infoset for external entities, XML Core mailing list, 2000 [W3C Member Only]. /
http://lists.w3.org/Archives/Member/w3c-xml-core-wg/2000OctDec/0054 /
UTF-16 /
RFC 2781: UTF-16, an encoding of ISO 10646. P. Hoffman and F. Yergeau. Informational, February 2000. /
http://www.ietf.org/rfc/rfc2781.txt /
UTF-8 /
RFC 2279: UTF-8, a transformation format of ISO 10646F. F. Yergeau. Standards Track, January 1998. /
http://www.ietf.org/rfc/rfc2279.txt /
URI /
RFC 2396: Uniform Resource Identifiers (URI): Generic Syntax. T. Berners-Lee, R. Fielding, and L. Masinter. Standards Track, August 1998. /
http://www.ietf.org/rfc/rfc2396.txt /
http://www.ietf.org/rfc/rfc1738.txt /
http://www.ietf.org/rfc/rfc2141.txt /
RFC 2611: URN Namespace Definition Mechanisms. Best Current Practices. Daigle, D. van Gulik, R. Iannella, P. Falstrom. June 1999. /
http://www.ietf.org/rfc/rfc2611.txt /
X509v3 /
ITU-T Recommendation X.509 version 3 (1997). "Information Technology - Open Systems Interconnection - The Directory Authentication Framework" ISO/IEC 9594-8:1997. /
XML /
Extensible Markup Language (XML) 1.0 (Second Edition). T. Bray, J. Paoli, C. M. Sperberg-McQueen, and E. Maler. W3C Recommendation, October 2000. /
XML-Base /
XML Base. J. Marsh. W3C Recommendation, June 2001. /
http://www.w3.org/TR/2001/REC-xmlbase-20010627/ /
XML-C14N /
Canonical XML. J. Boyer. W3C Recommendation, March 2001. /
http://www.w3.org/TR/2001/REC-xml-c14n-20010315 /
http://www.ietf.org/rfc/rfc3076.txt /
XML-exc-C14N /
Exclusive XML Canonicalization. J. Boyer, D. Eastlake, and J. Reagle. W3C Recommendation, July 2002. /
http://www.w3.org/TR/2002/REC-xml-exc-c14n-20020718/ /
XML-DSIG /
XML-Signature Syntax and Processing. D. Eastlake, J. Reagle, and D. Solo. W3C Recommendation, February 2002. /
http://www.w3.org/TR/2002/REC-xmldsig-core-20020212/ /
XML-DSIG-Decrypt /
Decryption Transform for XML Signature. M. Hughes, T. Imamura and H. Maruyama. W3C Recommendation, December 2002. /
http://www.w3.org/TR/2002/REC-xmlenc-decrypt-20021210 /
XML-Encryption /
XML Encryption Syntax and Processing. D. Eastlake and J. Reagle. W3C Candidate Recommendation, December 2002. /
http://www.w3.org/TR/2002/CR-xmlenc-core-20020802/ /
XML-Infoset /
XML Information Set. J. Cowan and R. Tobin. W3C Recommendation, October 2001 /
http://www.w3.org/TR/2001/REC-xml-infoset-20011024/ /
XML-MT /
RFC 3023: XML Media Types. M. Murata, S. St. Laurent, and D. Kohn. Informational, January 2001. /
http://www.ietf.org/rfc/rfc2376.txt /
XML-NS /
Namespaces in XML. T. Bray, D. Hollander, and A. Layman. W3C Recommendation, January 1999. /
http://www.w3.org/TR/1999/REC-xml-names-19990114 /
XML-schema /
XML Schema Part 1: Structures D. Beech, M. Maloney, and N. Mendelsohn. W3C Recommendation, May 2001. /
http://www.w3.org/TR/2001/REC-xmlschema-1-20010502/ /
XML Schema Part 2: Datatypes. P. Biron and A. Malhotra. W3C Recommendation, May 2001. /
http://www.w3.org/TR/2001/REC-xmlschema-2-20010502/ /
XPath /
XML Path Language (XPath) Version 1.0. J. Clark and S. DeRose. W3C Recommendation, October 1999./
http://www.w3.org/TR/1999/REC-xpath-19991116 /
|
|
9.
|
Qualification of
W3C:
|
|
|
W3C is qualified for including references in ITU-T Recommendations under Recommendation A.5 procedures.
|
|
10.
|
Other (for any supplementary information):
|
|
|
All standards are available on-line. An index of Recommendation and their status may be found in the W3C archives at http://www.w3.org/TR/ .
|
|
