[CLOSED] W3C XML Security Working Group
- ️Sat Dec 31 2016
The XML Security Working Group closed on December 31st 2016
-
On this page:
- Mission | News | Meetings | Code & Toolkits | The Chairs | Background Reading Nearby:
- Charter | Roadmap | Publication Status | Meeting Schedule and Minutes | Implementations | Interop | Participants | Patent Policy Status | Security Activity Statement | WG Members Page | Papers Historic Working Group Pages:
- XML Signature
- XML Encryption
- XML Security Maintenance WG Chair(s):
- Frederick Hirsch <frederick.hirsch@nokia.com> Mailing Lists
- General, Technical and Public Discussions: public-xmlsec@w3.org
- Administrative issue Discussions: member-xmlsec@w3.org
- Public Comment List: public-xmlsec-comments@w3.org; Archives
- Public General Discussion List: public-xmlsec-discuss@w3.org; Archives
- W3C IETF XML Signature Discussion List: w3c-ietf-xmlsig@w3.org; Archives
- Join the Working Group: Apply here!
- Public Archive: http://lists.w3.org/Archives/Public/public-xmlsec/
- Member Archive: http://lists.w3.org/Archives/Member/member-xmlsec/
- Historical XML Sec Maintenance WG Archive: http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/
Mission
The Group was part of the Security Activity. It took up prior W3C Work on XML Signature and XML Encryption, as well as work from the XML Security Specifications Maintenance Working Group, that produced XML Signature, Second Edition.
News
2016-12-31: The XML Security Working Group closed as its charter expired.
2015-07-23: The XML Signature Syntax and Processing Version 2.0 informative W3C Working Group Note has been updated to include a reference to the XML Signature 2.0 schema in the XSD Schema section. A diff from the previous Note publication is available.
2015-07-20: Errata for XML Signature 1.1 updated to add two errata items (E02 and E03) related to the schema driver file referenced in section 9.1.
2014-10-01: Errata for XML Signature 1.1 updated to add errata item (E01) to clarify Language related to Detached Signatures in Overview (Section 2) and Definitions (Section 10).
2013-06-18: The "Test cases for Canonical XML 2.0" Working Group Note has been updated to correct the text in section 3.4, "Namespace Re-Declarations".
2013-04-11: XML Encryption 1.1, XML Signature 1.1 and XML Signature Properties are W3C Recommendations
The XML Security Working Group has published three Recommendations today:
XML Signature Syntax and Processing Version 1.1. This document specifies XML digital signature processing rules and syntax. XML Signatures provide integrity, message authentication, and/or signer authentication services for data of any type, whether located within the XML that includes the signature or elsewhere.
XML Encryption Syntax and Processing Version 1.1. This document specifies a process for encrypting data and representing the result in XML. The data may be in a variety of formats, including octet streams and other unstructured data, or structured data formats such as XML documents, an XML element, or XML element content. The result of encrypting data is an XML Encryption element that contains or references the cipher data.
XML Signature Properties. This document outlines the syntax and processing rules and an associated namespace for properties to be used in XML Signatures. These can be composed with any version of XML Signature using the XML SignatureProperties element. These properties are intended to meet code signing requirements.
The group also published thirteen Working Group Notes.
The following seven are related to XML Security 1.1:
Functional Explanation of Changes in XML Encryption 1.1 provides a summary of non-editorial changes in XML Encryption 1.1 from the previous XML Encryption Recommendation.
Functional Explanation of Changes in XML Signature 1.1 provides a summary of non-editorial changes in XML Signature 1.1 from the previous XML Signature Recommendation.
XML Security 1.1 Requirements and Design Considerations, summarizes scenarios, design decisions, and requirements for the XML Signature and Canonical XML specifications, to guide ongoing W3C work to revise these specifications.
XML Security Algorithm Cross-Reference, summarizes XML Security algorithm URI identifiers and the specifications associated with them.
XML Security Generic Hybrid Ciphers, specifies an XML syntax and processing rules for generic hybrid ciphers and key encapsulation mechanisms and reserves identifiers for algorithms.
XML Security RELAX NG Schemas, provides non-normative RELAX NG schemas in the compact syntax as well as the XML syntax.
XML Signature Best Practices, collects best practices for implementers and users of the XML Signature specification, some of which to improve security and mitigate attacks.
The following six Working Group Notes conclude the XML Security 2.0 work:
XML Security 2.0 Requirements and Design Considerations This document outlines use cases, requirements and design choices for XML Security 2.0, specifically Canonical XML 2.0 and XML Signature 2.0. It includes a proposed simplification of the XML Signature Transform mechanism, intended to enhance security, performance, streamability and to ease adoption.
XML Signature Syntax and Processing Version 2.0 This informative W3C Working Group Note describes XML digital signature processing rules and syntax. XML Signatures provide integrity, message authentication, and/or signer authentication services for data of any type, whether located within the XML that includes the signature or elsewhere.
XML Signature 2.0 includes a new Reference processing model designed to address additional requirements including performance, simplicity and streamability. This "2.0 mode" model is significantly different than the XML Signature 1.x model in that it explicitly defines selection, canonicalization and verification steps for data processing and disallows generic transforms. XML Signature 2.0 is designed to be backward compatible through the inclusion of a "Compatibility Mode" which enables the XML Signature 1.x model to be used where necessary.
Canonical XML Version 2.0. This informative W3C Working Group Note describes Canonical XML Version 2.0, a canonicalization algorithm for XML Signature 2.0. It addresses issues around performance, streaming, hardware implementation, robustness, minimizing attack surface, determining what is signed and more.
XML Signature Streaming Profile of XPath 1.0 This informative W3C Working Group Note describes a streamable profile of XPath 1.0 suitable for use with XML Signature 2.0.
XML Encryption 1.1 CipherReference Processing using 2.0 Transforms This informative W3C Working Group Note describes specifies how the XML Signature 2.0 transform model may be used with XML Encryption 1.1 for CipherReference processing.
Test cases for Canonical XML 2.0 This document outlines test cases for Canonical XML 2.0.
For earlier news, visit the Previous News page.
Latest Publications and Current Drafts
Links to the latest publications and current editor drafts are available from the Publication Status page. Please send comments related to these documents to public-xmlsec-comments@w3.org. There is a public archive of comments received.
See also the list of the XML Security published Technical Reports.
Meetings
Optional teleconferences happen as required. See the WG Members Page for upcoming meeting information. Minutes are posted to the list; WG members are obligated to review, correct, or counter any proposals or consensus achieved on the call on the list. Minutes approved by the WG are publicly archived.
Test Suites, Public Code and Toolkits
If you would like to appear in this list, send an announcement to the XML Security public mailing list.
- Test Cases for C14N 1.1 and XMLDSig Interoperability, W3C Working Group Note, 2008-06-10
- XML-Signature Interoperability, 2003-07-10
Background Reading
- Working Group Charter
- XML Signature Syntax and Processing, Second Edition, W3C Recommendation, (Explanation of changes, redline)
- Workshop Report from W3C Workshop on Next Steps for XML Signature and XML Encryption.
- Using XML Digital Signatures in the 2006 XML Environment, W3C Working Group Note
- Canonical XML 1.1, W3C Recommendation
- XML-Signature XPath Filter 2.0, W3C Recommendation
- XML Encryption, W3C Recommendation.
- Decryption Transform for XML Signature and Decryption Transform Errata
Chair: Frederick Hirsch
Team Contact and Security Activity Lead: Thomas Roessler
$Id: Overview.html,v 1.136 2017/01/11 10:48:56 dom Exp $
Copyright 2007-2008 W3C (MIT, ERCIM, Keio), All Rights Reserved. W3C liability, trademark, document use and software licensing rules apply. Your interactions with this site are in accordance with our public and Member privacy statements.