XML Security Specifications Maintenance Working Group

This Working Group has completed, after having its charter extended to 30 June 2008 and completing its work.

From the charter: The mission of this Working Group is to perform limited maintenance work on the basic XML Security specifications, and suggest a charter for further work.

The Group has been part of the Security Activity. It took up prior W3C Work on XML Signature and XML Encryption.

New work on this topic is being performed in the follow-on XML Security Working Group. Please see that page for information on participation.

Accomplishments of the Security Specifications Maintenance WG include the following:

Performed interop testing on Canonical XML 1.1 and XML Signature, Second Edition, publishing a W3C Working Group Note, Test Cases for C14N 1.1 and XMLDSig Interoperability. This work supported publication of Canonical XML Version 1.1 as a W3C Recommendation as well as publication of XML Signature, Second Edition.
Published XML Signature Syntax and Processing (Second Edition) as a W3C Recommendation, as well as a summary of changes from the first edition.
Held a Workshop on Next Steps for XML Signature and XML Encryption (Agenda) on 25-26 September 2007 and produced a Workshop Report that categorizes and summarizes issues related to XML Signature. The Working Group used this to develop a recommended draft charter for a follow on Working Group that has been chartered.
Initiated a Best Practices draft for XML Signature, Second Edition that may be further developed by the subsequent XML Security WG as a Working Group Note.
Reviewed Relax NG usage for XML Signature, Second Edition that may be further developed by the subsequent XML Security WG as a Working Group Note.
Initiated an update to the IETF RFC associated with XML Signature.

List of participants
Patent Policy Status

News

XML Signature Syntax and Processing (Second Edition) Is a W3C Recommendation

From the W3C News (Permalink):

2008-06-10: The XML Security Specifications Maintenance Working Group has published the W3C Recommendation of XML Signature Syntax and Processing (Second Edition). This document specifies XML syntax and processing rules for creating and representing digital signatures; the list of changes from the First Edition is available. The Working Group also published a Group Note Test Cases for C14N 1.1 and XMLDSig Interoperability, which specifies test cases for Canonical XML 1.1 and XML Signature Syntax and Processing, Second Edition. Learn more about the Security Activity. (Permalink)

XML Security Working Group to Take Next Steps on XML Signature, Encryption

From the W3C News (Permalink): 2008-05-21: W3C is pleased to announce the creation of the XML Security Working Group, whose mission is to evaluate and act on recommendations from the September 2007 Workshop on XML Signature and XML Encryption regarding next steps for XML Security specifications. The group's deliverables include new work on XML Signature Syntax and Processing and XML Encryption Syntax and Processing, as well as maintenance of related specifications. Frederick Hirsch (Nokia) will Chair the group, with Thomas Roessler (W3C) as Team Contact.

Canonical XML Version 1.1 Recommendation Published

2008-05-02: The XML Core Working Group has published the W3C Recommendation of Canonical XML Version 1.1. Canonical XML Version 1.1 is a revision to Canonical XML Version 1.0 to address issues related to inheritance of attributes in the XML namespace when canonicalizing document subsets, including the requirement not to inherit xml:id, and to treat xml:base URI path processing properly. Canonical XML Version 1.1 is applicable to XML 1.0 and defined in terms of the XPath 1.0 data model. It is not defined for XML 1.1. (Permalink to W3C news announcement.)

XML Signature, Second Edition Proposed Edited Recommendation Published

Proposed Edited Recommendation of XML Signature Syntax and Processing (Second Edition). (Permalink to W3C news announcement.)

This document specifies XML digital signature processing rules and syntax. XML Signatures provide integrity, message authentication, and/or signer authentication services for data of any type, whether located within the XML that includes the signature or elsewhere. Read the list of changes and the implementation report. Comments are welcome through 30 April.

C14N11 advances to Proposed Recommendation

Canonical XML 1.1 has advanced to Proposed Recommendation.

Work Group extended. Drafting Charter.

The end date of this WG has been extended to 31 March 2008 (member-only link). The Working Group is currently drafting a charter for a subsequent XML Security WG, incorporating feedback from Workshop participants, and working group members.

Please send any questions or comment on this draft charter to the [email protected] mailing list.

Advancing C14N11

The WG has provided comments on C14N11 to XML Core and agreed to the disposition of those comments in the latest C14N11 draft. The WG is providing an implementation report (Members only) in support of advancing C14N11.

F2F meeting during Tech Plenary

The XML Security Specifications Maintenance Working Group met during the W3C Technical Plenary/Advisory Committee Meetings Week on Thursday and Friday, 8-9 November (minutes), held a joint meeting with XML Core to discuss C14N11 (minutes), and also met with the Efficient XML Interchange (EXI) WG to discuss XML Security and future EXI directions (minutes and slides).

Workshop

The Workshop Report that categorizes and summarizes discussion topics from the workshop is now available.

The Workshop on Next Steps for XML Signature and XML Encryption was held 25-26 September in Mountain View, California, USA, hosted by VeriSign. The meeting Agenda includes links to papers and slides from the meeting.

Interoperability Testing Event: C14N 1.1 and XML Digital Signatures Core

To prepare the transition of Canonical XML 1.1 to Proposed Recommendation, and the preparation of a Proposed Edited Recommendation for XML-Signature Syntax and Processing, the XML Security Specifications Maintenance Working Group held a one-day interoperability event in Mountain View, California, on 27 September 2007. The event was co-located with the W3C workshop on Next Steps for XML Signature and XML Encryption.

C14N11 is Candidate Recommendation

Canonical XML 1.1 has advanced to Candidate Recommendation. See the permalink for the W3C news announcement.

Reading List

Working Group Charter
XML Signature Syntax and Processing, W3C Recommendation
XML Signature Errata
Using XML Digital Signatures in the 2006 XML Environment, W3C Working Group Note
Canonical XML 1.1, W3C Working Draft
Decryption Transform for XML Signature
Decryption Transform Errata

Mailing Lists

Technical discussion takes place on the Working Group public discussion list, [email protected] (archive). Group participants are automatically subscribed.

Administrative issues are discussed on the Member-only member-xmlsec-maintwg mailing list (archive). See the administrative page for more details.

Meetings

Approved Meeting Records

2008-06-17 Teleconference, 9-10:30 am Eastern Time Agenda: Minutes
2008-06-10 Teleconference, 9-10:00 am Eastern Time, Agenda: Minutes
2008-06-03 Teleconference, 9-10:15 am Eastern Time Agenda v2: Minutes
2008-05-20 Teleconference, 9-10:30 am Eastern Time Agenda v2: Minutes
2008-05-06 Teleconference, 9-10:30 am Eastern Time Agenda: Minutes
2008-04-15 Teleconference, 9-10:00 am Eastern Time Agenda v2: Minutes
2008-04-01 Teleconference, 9-10:00 am Eastern Time Agenda: Minutes
2008-03-18 Teleconference, 9-10:00 am Eastern Time Agenda v2: Minutes
2008-02-26 Teleconference, 9-10:00 am Eastern Time Agenda v2: Minutes
2008-02-19 Teleconference, 9-10:00am Eastern Time Agenda v2: Minutes
2008-02-12 Teleconference, 9-10:00am Eastern Time Agenda: Minutes
2008-02-05 Teleconference, 9-10:00am Eastern Time Agenda: Minutes
2008-01-29 Teleconference, 9-10:30am Eastern Time Agenda: Minutes
2008-01-22 Teleconference, 9-10:30am Eastern Time Agenda: Member-Only Minutes
Public Minutes
2008-01-15 Teleconference, 9-10:30am Eastern Time Agenda: Minutes
2008-01-08 Teleconference, 9-10:30am Eastern Time Agenda v2: Minutes
2008-01-01 Teleconference Cancelled
2007-12-25 Teleconference Cancelled
2007-12-18 Teleconference, 9-10:30am Eastern Time Agenda v3: Public Minutes
Member-Confidential Minutes
2007-12-11 Teleconference, 9-10:30 am Eastern Time Agenda v2: Public Minutes
Member-Only Minutes
2007-12-04 Teleconference, 9-10:30 am Eastern Time Agenda: Public Minutes
Member-Only Minutes
2007-11-27 Teleconference, 9-10:30 am Eastern Time Agenda v2: Minutes
2007-11-08 and 2007-11-09 F2F Agenda v4: Minutes 8 Nov
Minutes 9 Nov
Presentation - Eric Cohen: Business requirements for authentication and integrity of XBRL documents
XBRL Intro
Presentation - Ed Simon: XML Signature 2.0 Strawman Proposal v2
Member-only EXI minutes from joint XMLSec and EXI meeting. EXI Overview slides and EXI joint-meeting slides.
2007-11-06 Joint XMLSec and XML Core F2F session, 8:30-10:00 am Eastern Time XML Core Agenda: Topic is C14N11 CR. Information on teleconference on XML Core agenda page. Only open to XML Core and XMLSec WG members.
Minutes
Red-line C14N11 change summary
2007-10-30 Teleconference, 9-10:30 am Eastern Time Agenda: Public Minutes
Member-Only Minutes
2007-10-23 Teleconference, 9-10:30 am Eastern Time Agenda v3: Minutes (Member-Confidential Minutes)
2007-10-16 Teleconference, 9-10:30 am Eastern Time Agenda v2: Minutes (Member-Confidential Minutes)
2007-10-09 Teleconference, 9-10:30 am Eastern Time Agenda: Minutes
2007-10-02 Teleconference - Meeting cancelled
2007-09-25 Teleconference - Meeting cancelled - Workshop. Agenda, Workshop Report
2007-09-18 Teleconference, 9-10:30 am Eastern Time Agenda: Minutes
2007-09-11 Teleconference, 9-10:30 am Eastern Time Agenda: Minutes
2007-09-04 Teleconference, 9-10:30 am Eastern Time Agenda: Minutes
2007-08-28 Teleconference, 9-10:30 am Eastern Time Agenda: Minutes
2007-08-21 Teleconference, 9-10:30 am Eastern Time (Note with this call WG starts 90 minutes per call instead of 60.) Agenda v3: Minutes
2007-08-14 Teleconference, 9-10:00 am Eastern Time Agenda v2: Minutes
2007-08-07 Teleconference, 9-10 am Eastern Time Agenda v2: Minutes
2007-07-31 Teleconference, 9-10 am Eastern Time Agenda v3: Minutes
2007-07-24 Teleconference - Meeting cancelled
2007-07-17 Teleconference, 9-10 am Eastern Time - Agenda v3: Minutes
2007-07-10 Teleconference, 9-10 am Eastern Time - Agenda v2: Minutes
2007-06-26 Teleconference, 9-10 am Eastern Time - Agenda: Minutes
2007-06-19 Teleconference, 9-10 am Eastern Time - Agenda v3: Minutes
2007-06-12 Teleconference, 9-10 am Eastern Time - Agenda (v2): Minutes
2007-06-05 Teleconference, 9-10 am Eastern Time- Agenda: Minutes
2007-05-29 Teleconference - Agenda: Minutes
2007-05-22 Teleconference - Agenda: Minutes
2007-05-15 Teleconference - Agenda: Minutes
2007-05-02 and 2007-05-03 F2F - Agenda (v4): Minutes 2 May, and 3 May
2007-04-17 Teleconference - Agenda: Minutes

Chair: Frederick Hirsch
Team Contact and Security Activity Lead: Thomas Roessler
$Id: Overview.html,v 1.72 2008/07/02 18:38:12 fhirsch3 Exp $

Copyright Â© 2006-2007 W3C^Â® (MIT, ERCIM, Keio), All Rights Reserved. W3C liability, trademark, document use and software licensing rules apply. Your interactions with this site are in accordance with our public and Member privacy statements.