[Fwd: Proposed charter for OASIS EKMI TC]

FYI, a new Technical Committee is spinning up to create standards around symmetric key-management - protocols, and guidelines for establishing, operating and auditing symmetric key-management infrastructures. Why is this relevant to the XML Security group? The DRAFT SKSML protocol and open-sourc

DO NOT REPLY [Bug 40921] - XML contents modified and signature normallly validated.

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND· INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bu

Re: DO NOT REPLY [Bug 40921] - XML contents modified and signature normallly validated.

Scott Cantor wrote: >>So out of curiosity, how does one verify the Signature/KeyInfo match up in the JDK 1.6 code? I don't think that's how I would approach the question. In all cases, I think the application needs to supply the verification key. The application MAY choose to examine KeyInfo