To:
"'Roger Castillo Cortazar'" <castillo@nic.mx>, ietf-provreg@cafax.se
From:
"Hollenbeck, Scott" <shollenbeck@verisign.com>
Date:
Wed, 17 Apr 2002 17:23:41 -0400
Sender:
owner-ietf-provreg@cafax.se
Subject:
RE: XML Digital Signatures for EPP.
> -----Original Message----- > From: Roger Castillo Cortazar [mailto:castillo@nic.mx] > Sent: Wednesday, April 17, 2002 2:31 PM > To: ietf-provreg@cafax.se > Subject: XML Digital Signatures for EPP. > > > Hi everybody. > > We are working on an implementation of EPP for NIC-MX. > > In our requirements we included a digital signature for all the > object transform commands. > > This will provide the means to authenticate the sender, > verify the integrity of the information and to assure > the non-repudiation of the command. > > There is a lot of work from IETF and W3C on XML Signatures, > we have some RFC's on signing models, canonical forms, etc. > There are also a few SDK's for XML digital signatures. > > This seems to be quite interesting and useful, any comments ? > Is anyone working on something like this ? > > Maybe this could be an interesting extension for EPP. > What do you think ? Roger, I've been thinking about this from the very beginning, but haven't really wanted to get started until the EPP core documents were finished and the XML DSIG stuff firmed up a bit. Now that we're getting close to finishing the core documents and RFC 3275 has been published I plan on looking at it much more closely. One other thought: digital signatures can also be applied via Open PGP or S/MIME, and this might play into the whole email transport thing that we've talked about but not yet crafted an I-D for. Maybe there's two or three documents to be written around email, including a core spec and one each describing PGP and S/MIME security wrappers. -Scott-