You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@santuario.apache.org by "Colm O hEigeartaigh (JIRA)" <ji...@apache.org> on 2012/07/11 12:47:33 UTC

[jira] [Created] (SANTUARIO-326) Associated SignedElement SecurityEvents with the corresponding digest/c14n SecurityEvents

Colm O hEigeartaigh created SANTUARIO-326:
---------------------------------------------

             Summary: Associated SignedElement SecurityEvents with the corresponding digest/c14n SecurityEvents
                 Key: SANTUARIO-326
                 URL: https://issues.apache.org/jira/browse/SANTUARIO-326
             Project: Santuario
          Issue Type: Improvement
            Reporter: Colm O hEigeartaigh
            Assignee: Colm O hEigeartaigh
             Fix For: Java 2.0.0



For the streaming signature verification case, the SignedElementSecurityEvents which record what references were signed, is not linked with the corresponding digest and c14n AlgorithmSuiteSecurityEvents. Therefore there is no easy way to see what algorithms were applied to a particular Reference.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Assigned] (SANTUARIO-326) Associated SignedElement SecurityEvents with the corresponding digest/c14n SecurityEvents

Posted by "Colm O hEigeartaigh (JIRA)" <ji...@apache.org>.

     [ https://issues.apache.org/jira/browse/SANTUARIO-326?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Colm O hEigeartaigh reassigned SANTUARIO-326:
---------------------------------------------

    Assignee: Marc Giger  (was: Colm O hEigeartaigh)
    
> Associated SignedElement SecurityEvents with the corresponding digest/c14n SecurityEvents
> -----------------------------------------------------------------------------------------
>
>                 Key: SANTUARIO-326
>                 URL: https://issues.apache.org/jira/browse/SANTUARIO-326
>             Project: Santuario
>          Issue Type: Improvement
>          Components: Java
>            Reporter: Colm O hEigeartaigh
>            Assignee: Marc Giger
>             Fix For: Java 2.0.0
>
>
> For the streaming signature verification case, the SignedElementSecurityEvents which record what references were signed, is not linked with the corresponding digest and c14n AlgorithmSuiteSecurityEvents. Therefore there is no easy way to see what algorithms were applied to a particular Reference.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Commented] (SANTUARIO-326) Associated SignedElement SecurityEvents with the corresponding digest/c14n SecurityEvents

Posted by "Colm O hEigeartaigh (JIRA)" <ji...@apache.org>.

    [ https://issues.apache.org/jira/browse/SANTUARIO-326?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13436017#comment-13436017 ] 

Colm O hEigeartaigh commented on SANTUARIO-326:
-----------------------------------------------


Sure, sounds fine to me.

Colm.
                
> Associated SignedElement SecurityEvents with the corresponding digest/c14n SecurityEvents
> -----------------------------------------------------------------------------------------
>
>                 Key: SANTUARIO-326
>                 URL: https://issues.apache.org/jira/browse/SANTUARIO-326
>             Project: Santuario
>          Issue Type: Improvement
>          Components: Java
>            Reporter: Colm O hEigeartaigh
>            Assignee: Colm O hEigeartaigh
>             Fix For: Java 2.0.0
>
>
> For the streaming signature verification case, the SignedElementSecurityEvents which record what references were signed, is not linked with the corresponding digest and c14n AlgorithmSuiteSecurityEvents. Therefore there is no easy way to see what algorithms were applied to a particular Reference.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Updated] (SANTUARIO-326) Associated SignedElement SecurityEvents with the corresponding digest/c14n SecurityEvents

Posted by "Colm O hEigeartaigh (JIRA)" <ji...@apache.org>.

     [ https://issues.apache.org/jira/browse/SANTUARIO-326?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Colm O hEigeartaigh updated SANTUARIO-326:
------------------------------------------

    Component/s: Java
    
> Associated SignedElement SecurityEvents with the corresponding digest/c14n SecurityEvents
> -----------------------------------------------------------------------------------------
>
>                 Key: SANTUARIO-326
>                 URL: https://issues.apache.org/jira/browse/SANTUARIO-326
>             Project: Santuario
>          Issue Type: Improvement
>          Components: Java
>            Reporter: Colm O hEigeartaigh
>            Assignee: Colm O hEigeartaigh
>             Fix For: Java 2.0.0
>
>
> For the streaming signature verification case, the SignedElementSecurityEvents which record what references were signed, is not linked with the corresponding digest and c14n AlgorithmSuiteSecurityEvents. Therefore there is no easy way to see what algorithms were applied to a particular Reference.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Commented] (SANTUARIO-326) Associated SignedElement SecurityEvents with the corresponding digest/c14n SecurityEvents

Posted by "Marc Giger (JIRA)" <ji...@apache.org>.

    [ https://issues.apache.org/jira/browse/SANTUARIO-326?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13435278#comment-13435278 ] 

Marc Giger commented on SANTUARIO-326:
--------------------------------------

Hi Colm,

Would a unique correlation-id fulfill your requirements?

My idea is to add an correlation-id property to every SecurityEvent (for the signature-references case we could use the URI or id from the reference element, if existent, otherwise generate one. Other usecases e.g. encryption could follow the same rules).

What do you think?

Thanks

Marc
                
> Associated SignedElement SecurityEvents with the corresponding digest/c14n SecurityEvents
> -----------------------------------------------------------------------------------------
>
>                 Key: SANTUARIO-326
>                 URL: https://issues.apache.org/jira/browse/SANTUARIO-326
>             Project: Santuario
>          Issue Type: Improvement
>          Components: Java
>            Reporter: Colm O hEigeartaigh
>            Assignee: Colm O hEigeartaigh
>             Fix For: Java 2.0.0
>
>
> For the streaming signature verification case, the SignedElementSecurityEvents which record what references were signed, is not linked with the corresponding digest and c14n AlgorithmSuiteSecurityEvents. Therefore there is no easy way to see what algorithms were applied to a particular Reference.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

[jira] [Resolved] (SANTUARIO-326) Associated SignedElement SecurityEvents with the corresponding digest/c14n SecurityEvents

Posted by "Marc Giger (JIRA)" <ji...@apache.org>.

     [ https://issues.apache.org/jira/browse/SANTUARIO-326?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Marc Giger resolved SANTUARIO-326.
----------------------------------

    Resolution: Fixed

Resolved in r1377717
                
> Associated SignedElement SecurityEvents with the corresponding digest/c14n SecurityEvents
> -----------------------------------------------------------------------------------------
>
>                 Key: SANTUARIO-326
>                 URL: https://issues.apache.org/jira/browse/SANTUARIO-326
>             Project: Santuario
>          Issue Type: Improvement
>          Components: Java
>            Reporter: Colm O hEigeartaigh
>            Assignee: Marc Giger
>             Fix For: Java 2.0.0
>
>
> For the streaming signature verification case, the SignedElementSecurityEvents which record what references were signed, is not linked with the corresponding digest and c14n AlgorithmSuiteSecurityEvents. Therefore there is no easy way to see what algorithms were applied to a particular Reference.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira