|
1.
|
Clear description of the referenced document:
|
|
|
|
|
2.
|
Status of approval:
|
|
|
W3C Recommendation of 10 December 2002
|
|
3.
|
Justification for the specific reference:
|
|
|
The XML Encryption Syntax and Processing is used for secure encryption of XML data within the Continua Design Guideline architecture. W3C XMLENC specifies a process for encrypting data and representing the result in XML. The data may be arbitrary data (including an XML document), an XML element, or XML element content. The result of encrypting data is an XML Encryption element which contains or references the cipher data.
|
|
4.
|
Current information, if any, about IPR issues:
|
|
|
W3C is a Royalty Free organization. Identification of patent policy is available on the Web page http://www.w3.org/2004/01/pp-impl/
|
|
5.
|
Other useful information describing the "Quality" of the document:
|
|
|
Document published in December 2002 (http://www.w3.org/TR/xmlenc-core/). Status is Recommendation.
|
|
6.
|
The degree of stability or maturity of the document:
|
|
|
Document published in December 2002. Latest version: http://www.w3.org/TR/xmlenc-core/.
|
|
7.
|
Relationship with other existing or emerging documents:
|
|
|
|
|
8.
|
Any explicit references within that referenced document should also be listed:
|
|
|
TRIPLEDES /
ANSI X9.52: Triple Data Encryption Algorithm Modes of Operation. 1998. /
AES /
NIST FIPS 197: Advanced Encryption Standard (AES). November 2001. /
http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf /
AES-WRAP /
RFC3394: Advanced Encryption Standard (AES) Key Wrap Algorithm. J. Schaad and R. Housley. Informational, September 2002. /
CMS-Algorithms /
RFC3370: Cryptographic Message Syntax (CMS) Algorithms. R. Housley. Informational, February 2002. /
http://www.ietf.org/rfc/rfc3370.txt /
CMS-Wrap /
RFC3217: Triple-DES and RC2 Key Wrapping. R. Housley. Informational, December 2001. /
http://www.ietf.org/rfc/rfc3217.txt /
Davis /
Defective Sign & Encrypt in S/MIME, PKCS#7, MOSS, PEM, PGP, and XML. D. Davis. USENIX Annual Technical Conference. 2001. /
http://www.usenix.org/publications/library/proceedings/usenix01/davis.html /
DES /
NIST FIPS 46-3: Data Encryption Standard (DES). October 1999. /
http://csrc.nist.gov/publications/fips/fips46-3/fips46-3.pdf /
EncReq /
XML Encryption Requirements. J. Reagle. W3C Note, March 2002. /
http://www.w3.org/TR/2002/NOTE-xml-encryption-req-20020304 /
ESDH /
RFC 2631: Diffie-Hellman Key Agreement Method. E. Rescorla. Standards Track, 1999. /
http://www.ietf.org/rfc/rfc2631.txt /
http://www.w3.org/TR/2002/CR-xml-exc-c14n-20020212 /
Glossary /
RFC 2828: Internet Security Glossary. R Shirey. Informational, May 2000. /
http://www.ietf.org/rfc/rfc2828.txt /
HMAC /
RFC 2104: HMAC: Keyed-Hashing for Message Authentication. H. Krawczyk, M. Bellare, and R. Canetti. Informational, February 1997. /
http://www.ietf.org/rfc/rfc2104.txt /
HTTP /
RFC 2616: Hypertext Transfer Protocol -- HTTP/1.1. J. Gettys, J. Mogul, H. Frystyk, L. Masinter, P. Leach, and T. Berners-Lee. Standards Track, June 1999. /
http://www.ietf.org/rfc/rfc2616.txt /
KEYWORDS /
RFC 2119: Key words for use in RFCs to Indicate Requirement Levels. S. Bradner. Best Current Practice, March 1997. /
http://www.ietf.org/rfc/rfc2119.txt /
MD5 /
RFC 1321: The MD5 Message-Digest Algorithm. R. Rivest. Informational, April 1992. /
http://www.ietf.org/rfc/rfc1321.txt /
MIME /
RFC 2045: Multipurpose Internet Mail Extensions (MIME) Part One: Format of Internet Message Bodies. N. Freed and N. Borenstein. Standards Track, November 1996. /
http://www.ietf.org/rfc/rfc2045.txt /
MIME-REG /
RFC 2048: Multipurpose Internet Mail Extensions (MIME) Part Four: Registration Procedures. N. Freed, J. Klensin, and J. Postel. Best Current Practice, November 1996. /
http://www.ietf.org/rfc/rfc2048.txt /
NFC /
TR15, Unicode Normalization Forms. M. Davis and M. Dürst. Revision 18: November 1999. /
http://www.unicode.org/unicode/reports/tr15/tr15-18.html. /
NFC-Corrigendum /
Corrigendum #2: Yod with Hiriq Normalization. /
http://www.unicode.org/versions/corrigendum2.html. /
prop1 /
XML Encryption strawman proposal. E. Simon and B. LaMacchia. Aug 2000. /
http://lists.w3.org/Archives/Public/xml-encryption/2000Aug/0001.html /
prop2 /
Another proposal of XML Encryption. T. Imamura. Aug 2000. /
http://lists.w3.org/Archives/Public/xml-encryption/2000Aug/0005.html /
prop3 /
XML Encryption Syntax and Processing. B. Dillaway, B. Fox, T. Imamura, B. LaMacchia, H. Maruyama, J. Schaad, and E. Simon. December 2000. /
http://lists.w3.org/Archives/Public/xml-encryption/2000Dec/att-0024/01-XMLEncryption_v01.html /
PKCS1 /
RFC 2437: PKCS #1: RSA Cryptography Specifications Version 2.0. B. Kaliski and J. Staddon. Informational, October 1998. /
http://www.ietf.org/rfc/rfc2437.txt /
RANDOM /
RFC 1750: Randomness Recommendations for Security. D. Eastlake, S. Crocker, and J. Schiller. Informational, December 1994. /
http://www.ietf.org/rfc/rfc1750.txt /
RIPEMD-160 /
CryptoBytes, Volume 3, Number 2. The Cryptographic Hash Function RIPEMD-160. RSA Laboratories. Autumn 1997. /
ftp://ftp.rsasecurity.com/pub/cryptobytes/crypto3n2.pdf /
http://www.esat.kuleuven.ac.be/~cosicart/pdf/AB-9601/AB-9601.pdf /
SHA /
Secure Hash Standard. NIST FIPS 180-1. (RFC 3174). April 1995. /
http://www.itl.nist.gov/fipspubs/fip180-1.htm /
Secure Hash Standard. NIST Draft FIPS 180-2. 2001. (Extended to include SHA-384, SHA-256, and SHA-512) /
http://csrc.nist.gov/encryption/shs/dfips-180-2.pdf /
Tobin /
R. Tobin. Infoset for external entities, XML Core mailing list, 2000 [W3C Member Only]. /
http://lists.w3.org/Archives/Member/w3c-xml-core-wg/2000OctDec/0054 /
UTF-16 /
RFC 2781: UTF-16, an encoding of ISO 10646. P. Hoffman and F. Yergeau. Informational, February 2000. /
http://www.ietf.org/rfc/rfc2781.txt /
UTF-8 /
RFC 2279: UTF-8, a transformation format of ISO 10646F. F. Yergeau. Standards Track, January 1998. /
http://www.ietf.org/rfc/rfc2279.txt /
URI /
RFC 2396: Uniform Resource Identifiers (URI): Generic Syntax. T. Berners-Lee, R. Fielding, and L. Masinter. Standards Track, August 1998. /
http://www.ietf.org/rfc/rfc2396.txt /
http://www.ietf.org/rfc/rfc1738.txt /
http://www.ietf.org/rfc/rfc2141.txt /
RFC 2611: URN Namespace Definition Mechanisms. Best Current Practices. Daigle, D. van Gulik, R. Iannella, P. Falstrom. June 1999. /
http://www.ietf.org/rfc/rfc2611.txt /
X509v3 /
ITU-T Recommendation X.509 version 3 (1997). "Information Technology - Open Systems Interconnection - The Directory Authentication Framework" ISO/IEC 9594-8:1997. /
XML /
Extensible Markup Language (XML) 1.0 (Second Edition). T. Bray, J. Paoli, C. M. Sperberg-McQueen, and E. Maler. W3C Recommendation, October 2000. /
XML-Base /
XML Base. J. Marsh. W3C Recommendation, June 2001. /
http://www.w3.org/TR/2001/REC-xmlbase-20010627/ /
XML-C14N /
Canonical XML. J. Boyer. W3C Recommendation, March 2001. /
http://www.w3.org/TR/2001/REC-xml-c14n-20010315 /
http://www.ietf.org/rfc/rfc3076.txt /
XML-exc-C14N /
Exclusive XML Canonicalization. J. Boyer, D. Eastlake, and J. Reagle. W3C Recommendation, July 2002. /
http://www.w3.org/TR/2002/REC-xml-exc-c14n-20020718/ /
XML-DSIG /
XML-Signature Syntax and Processing. D. Eastlake, J. Reagle, and D. Solo. W3C Recommendation, February 2002. /
http://www.w3.org/TR/2002/REC-xmldsig-core-20020212/ /
XML-DSIG-Decrypt /
Decryption Transform for XML Signature. M. Hughes, T. Imamura and H. Maruyama. W3C Recommendation, December 2002. /
http://www.w3.org/TR/2002/REC-xmlenc-decrypt-20021210 /
XML-Encryption /
XML Encryption Syntax and Processing. D. Eastlake and J. Reagle. W3C Candidate Recommendation, December 2002. /
http://www.w3.org/TR/2002/CR-xmlenc-core-20020802/ /
XML-Infoset /
XML Information Set. J. Cowan and R. Tobin. W3C Recommendation, October 2001 /
http://www.w3.org/TR/2001/REC-xml-infoset-20011024/ /
XML-MT /
RFC 3023: XML Media Types. M. Murata, S. St. Laurent, and D. Kohn. Informational, January 2001. /
http://www.ietf.org/rfc/rfc2376.txt /
XML-NS /
Namespaces in XML. T. Bray, D. Hollander, and A. Layman. W3C Recommendation, January 1999. /
http://www.w3.org/TR/1999/REC-xml-names-19990114 /
XML-schema /
XML Schema Part 1: Structures D. Beech, M. Maloney, and N. Mendelsohn. W3C Recommendation, May 2001. /
http://www.w3.org/TR/2001/REC-xmlschema-1-20010502/ /
XML Schema Part 2: Datatypes. P. Biron and A. Malhotra. W3C Recommendation, May 2001. /
http://www.w3.org/TR/2001/REC-xmlschema-2-20010502/ /
XPath /
XML Path Language (XPath) Version 1.0. J. Clark and S. DeRose. W3C Recommendation, October 1999./
http://www.w3.org/TR/1999/REC-xpath-19991116 /
|
|
9.
|
Qualification of
W3C:
|
|
|
W3C is qualified for including references in ITU-T Recommendations under Recommendation A.5 procedures.
|
|
10.
|
Other (for any supplementary information):
|
|
|
All standards are available on-line. An index of Recommendation and their status may be found in the W3C archives at http://www.w3.org/TR/ .
|
|
