OASIS Digital Signature Services eXtended (DSS-X) TC

 View Only

Issue with seemingly different XML-DSig schemas

  • 1.  Issue with seemingly different XML-DSig schemas

    Posted 06-16-2010 14:36
    Dear DSS-X-Team,
    
    for some (most likely W3C-internal) reason there are two bitwise identical XML-DSig schemas
    out there (at #1 http://www.w3.org/TR/xmldsig-core/xmldsig-core-schema.xsd  and 
    #2 http://www.w3.org/TR/2002/REC-xmldsig-core-20020212/xmldsig-core-schema.xsd ),
    different standards use #1 (e.g. DSS-Core, SAML 1.1) or #2 (e.g. XML-Enc, SAML 2.0, XAdES etc. seemingly
    all standards, which use XML-Enc) and many tools (editors, code generators etc.) do not recognize that they are 
    in fact equal and produce according errors (double definition of elements).
    
    Do we see any chance to harmonize those two "worlds" in order to avoid the nasty
    manual tweaking of schema documents if one wants to use schemas from world#1 and world#2? 
    
    This problem should in particular occur if one wants to build software, which supports
    both the DSS Core http://docs.oasis-open.org/dss/v1.0/oasis-dss-core-schema-v1.0-os.xsd 
    and the AdES Profile http://docs.oasis-open.org/dss/v1.0/oasis-dss-profiles-AdES-schema-v1.0-os.xsd,
    which in turn includes http://uri.etsi.org/01903/v1.3.2/XAdES.xsd . 
    
    ... Or can we expect that the tools become smart enough to handle this situation
    properly?
    
    BR,
     Detlef
    
    --
    Dipl. Inform. (FH)
    Dr. rer. nat. Detlef Hühnlein
    Principal
    secunet Security Networks AG
    Sudetenstraße 16
    96247 Michelau
    Telefon +49 9571 896479
    Mobil   +49 171  9754980
    detlef.huehnlein@secunet.com
    www.secunet.com
    
    secunet Security Networks AG
    Kronprinzenstr. 30
    45128 Essen
    Amtsgericht Essen HRB 13615
    
    Vorstand:
    Dr. Rainer Baumgart
    Thomas Koelzer
    Thomas Pleines
    
    Aufsichtsratsvorsitzender:
    Dr. Karsten Ottenberg
    
    Diese E-mail kann vertrauliche Informationen enthalten. Falls Sie diese E-Mail irrtümlich erhalten haben, informieren Sie bitte unverzüglich den Absender und löschen Sie diese E-Mail von jedem Rechner, auch von den Mailservern. Jede Verbreitung des Inhalts, auch die teilweise Verbreitung, ist in diesem Fall untersagt. Außer bei Vorsatz oder grober Fahrlässigkeit schließen wir jegliche Haftung für Verluste oder Schäden aus, die durch Viren befallene Software oder E-Mails verursacht werden.
    
    This e-mail may contain strictly confidential information and is intended for the person to which it is addressed only. Any dissemination, even partly, is prohibited. If you receive this e-mail by mistake, please contact the sender and delete this e-mail from your computer, including your mailserver.
    Except in case of gross negligence or wilful misconduct we accept no liability for any loss or damage caused by software or e-mail viruses.