[Fwd: [ekmi] Public Review of SKSML v1.0]
Allen
netsecurity at sound-by-design.com
Thu Jul 24 23:35:08 EDT 2008
In as much as good key management is fundamental to cryptography
functioning appropriately I think that this is a good time for a
peek at the proposed standard to find the holes before we wind up
b$%^&ing about how badly it was and trying to figure out how to get
out from the hole that was dug because of a lack of oversight by the
general cryptography community.
Best Regards,
Allen
-------- Original Message --------
Subject: [ekmi] Public Review of SKSML v1.0
Date: Thu, 24 Jul 2008 22:04:49 -0400
From: Mary McRae <mary.mcrae at oasis-open.org>
Reply-To: <mary.mcrae at oasis-open.org>
Organization: OASIS
To: <members at lists.oasis-open.org>, <tc-announce at lists.oasis-open.org>
CC: 'ekmi' <ekmi at lists.oasis-open.org>
To OASIS members, Public Announce Lists:
The OASIS Enterprise Key Management Infrastructure (EKMI) TC has
recently approved the following specification as a Committee Draft
and approved the package for public review:
Symmetric Key Services Markup Language (SKSML) Version 1.0
The public review starts today, 24 July 2008, and ends 23 September
2008. This is an open invitation to comment. We strongly encourage
feedback from potential users, developers and others, whether OASIS
members or not, for the sake of improving the interoperability and
quality of OASIS work. Please feel free to distribute this
announcement within your organization and to other appropriate
mail lists.
More non-normative information about the specification and the
technical committee may be found at the public home page of the TC at:
http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=ekmi.
Comments may be submitted to the TC by any person through the use of
the OASIS TC Comment Facility which can be located via the button
marked "Send A Comment" at the top of that page, or directly at:
http://www.oasis-open.org/committees/comments/index.php?wg_abbrev=ekmi.
Submitted comments (for this work as well as other works of that TC)
are publicly archived and can be viewed at:
http://lists.oasis-open.org/archives/ekmi-comment/.
All comments submitted to OASIS are subject to the OASIS Feedback
License, which ensures that the feedback you provide carries the
same obligations at least as the obligations of the TC members.
The specification document and related files are available here:
Editable Source (Authoritative):
http://docs.oasis-open.org/ekmi/sksml/v1.0/pr01/SKSML-1.0-Specification.odt
PDF:
http://docs.oasis-open.org/ekmi/sksml/v1.0/pr01/SKSML-1.0-Specification.pdf
HTML:
http://docs.oasis-open.org/ekmi/sksml/v1.0/pr01/SKSML-1.0-Specification.html
Schema:
http://docs.oasis-open.org/ekmi/sksml/v1.0/pr01/schema/
Abstract:
This normative specification defines the first (1.0) version of the
Symmetric Key Services Markup Language (SKSML), an XML-based
messaging protocol, by which applications executing on computing
devices may request and receive symmetric key-management services
from centralized key-management servers, securely, over networks.
Applications using SKSML are expected to either implement the SKSML
protocol, or use a software library - called the Symmetric Key
Client Library (SKCL) - that implements this protocol. SKSML
messages are transported within a SOAP layer, protected by a Web
Services Security (WSS) header and can be used over standard HTTP
securely.
OASIS and the EKMI TC welcome your comments.
---------------------------------------------------
Mary P McRae
Manager of TC Administration, OASIS
email: mary.mcrae at oasis-open.org
web: www.oasis-open.org
---------------------------------------------------------------------
To unsubscribe from this mail list, you must leave the OASIS TC that
generates this mail. Follow this link to all your TCs in OASIS at:
https://www.oasis-open.org/apps/org/workgroup/portal/my_workgroups.php
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list