Documentation and Testing Content Security Spec Review Meeting 2010-09-03
Started from where we left off last time
Update to state the signatures MUST include the complete cert chain
On discovery, 3 options:
- Store intermediate certs locally
- Use one of the RFC cert extension methods to discover certs
- Use the same discovery method you use (DNS, LDAP, etc.)
Section is fine.
Would like to find a normative reference
Need to update terminology to always refer to private key
Update to state: if you do message wrapping, here's how to do it.
Update conformance section to document agreement of the S&T WG
CHange NHIND to more neutral language.
Decrypt then verify that you are holding a multipart/signed message with a valid signature.
Arien to do a second pass on the spec, then open up for a sub-group call for consensus, prior to full WG call for consensus.