No subject


Fri Aug 3 19:33:07 CDT 2007 

protocols in the past, Signing XML as XML rather than as opaque data is a
pain in the neck and should be avoided. XML encryption is easier precisely
because you have to encrypt the XML as data, not via some flexible ruleset
against some mungable object structure.


> It might well be. I haven't heard much interest in digital signatures
> for IM (heck, even email signing is not very popular, for example I'm
> one of the only people posting to this list who signs his email with an
> X.509 signature). I have heard some interest in end-to-end encryption,
> but it's difficult even to get people interested in encryption.


The security systems are themselves a network effect; I can't really care
until I'm sure its available for everyone I communicate with. For the types
of communication I typically have over IM, I would rather send the message
unsigned/unencrypted than not send it. If communications were encrypted, I
would probably put more high-value communications over IM.

Signatures have little value for me on their own however. In an IM context,
if a message has enough value to be signed to prevent forgery, it better
also be encrypted to prevent someone else from reading it.

-DW

------=_Part_3121_12694441.1207535580848
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

<div class="gmail_quote">On Fri, Apr 4, 2008 at 9:50 PM, Peter Saint-Andre &lt;<a href="mailto:stpeter at stpeter.im">stpeter at stpeter.im</a>&gt; wrote:<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
Who is &quot;we&quot;? Do you have multiple implementations in different<br>
codebases? One of the major concerns I have heard with XML dsig is<br>
interoperability (e.g., I have heard reports about serious interop<br>
problems with SAML). In particular, I have heard that canonicalization<br>
(&quot;c14n&quot;) has caused interop problems, since different people interpret<br>
c14n differently (and there are 3 or 4 different c14n methods!).</blockquote><div><br></div><div>XML dsig generally has interoperability issues on usage, not in implementations. That said, its a brutally complex specification to implement and there are only four software implementations I can think of off-hand (apache&#39;s java and C++ impls, Microsoft&#39;s C# implementation, and libxml2/libxmlsec1).</div>
<div><br></div><div>The more significant issue is that there is no guarantee that even modern Jabber protocol and XMPP implementations will not mess up XML in a way that breaks canonicalization. Server to Server traffic will munge up the namespace of the stanzas (from jabber:client to jabber:server), technically breaking a signature over any element in the jabber:client namespace, albeit temporarily.</div>
<div><br></div><div>If an implementation reduces a stanza to a representation that isn&#39;t an infoset-compatible DOM its likely that it will reassemble the XML after routing in a way that would break signatures that aren&#39;t in the precise order given. Also note that every server implementation that supports S2S, for the changing namespace reason, would require some custom DOM or custom XML serialization engine that goes outside of what has been standardized by the W3C.&nbsp;</div>
<div><br></div><div>From the point of view of someone who has implemented XML dsig-based protocols in the past,&nbsp;Signing XML as XML rather than as opaque data is a pain in the neck and should be avoided. XML encryption is easier precisely because you have to encrypt the XML as data, not via some flexible ruleset against some mungable object structure. </div>
<div><br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;"><div class="Ih2E3d"><br>
</div>It might well be. I haven&#39;t heard much interest in digital signatures<br>
for IM (heck, even email signing is not very popular, for example I&#39;m<br>
one of the only people posting to this list who signs his email with an<br>
X.509 signature). I have heard some interest in end-to-end encryption,<br>
but it&#39;s difficult even to get people interested in encryption.</blockquote><div><br></div><div>The security systems are themselves a network effect; I can&#39;t really care until I&#39;m sure its available for everyone I communicate with. For the types of communication I typically have over IM, I would rather send the message unsigned/unencrypted than not send it. If communications were encrypted, I would probably put more high-value communications over IM.&nbsp;</div>
<div><br></div><div>Signatures have little value for me on their own however. In an IM context, if a message has enough value to be signed to prevent forgery, it better also be encrypted to prevent someone else from reading it.&nbsp;</div>
<div><br></div><div>-DW</div></div>

------=_Part_3121_12694441.1207535580848--

More information about the Standards mailing list