2009-02-26: The XML Security Working Group has published a set of eight Working Drafts.
The XML Signature 1.1 and XML Encryption 1.1 First Public Working Drafts make changes
to the default sets of cryptographic algorithms in both specifications. XML Security
Use Cases and Requirements and XML Signature Transform Simplification: Requirements
and Design are documents that we expect to help guide the group's work on a future
version of the XML Security specifications that might make more radical changes than
the 1.1 series of these specifications. The Working Group would like to receive early
feedback on these four drafts.
Additionally, the XML Security Derived Keys specification introduces mark-up for key
derivation, for use with both XML Signature and XML Encryption. XML Signature Properties
defines commonly used signature properties. XML Security Algorithms is a cross-reference
for the algorithms and their identifiers used with the XML security specifications,
bringing in one place information located in a number of documents. XML Signature Best
Practices is a revised Working Draft for Best Practices in using the XML Signature
specification. (Permalink)
2009-02-26: The Web Security Context Working Group has published the second Last
Call Working Draft of Web Security Context: User Interface Guidelines. This specification
deals with the trust decisions that users must make online, and with ways to support them
in making safe and informed decisions where possible. In order to achieve that goal, this
specification includes recommendations on the presentation of identity information by Web
user agents. It also includes recommendations for handling errors in security protocols.
This second Last Call Working Draft incorporates feedback gathered during the first Last
Call period, both from the public and from implementers participating in the Working Group.
Comments are welcome through 19 March 2009. Learn more about the Security Activity.