[xmlsec] XPATH and Visa 3D-secure specification
jacekn at polcard.com.pl
Thu Sep 25 08:42:52 PDT 2003
> What I don't get now is 1) why they don't recognize their error and 2) how
> they've gotten this far without correcting it. Maybe they just think
> they're too big to be wrong. Has anybody other than Slava tried to
> straighten them out?
Yes, I have sent a question to them about this about a week ago, after Mr Sanin has responded to my question on this mailing list (thread "Reference URI: ID vs CDATA"). Visa have responded that they agree that it would be better if their specs define this attribute as "ID" from the beginning. But they decided not to change it, because they see that everything is working in practice.
> > -----Original Message-----
> > From: Rich Salz [mailto:rsalz at datapower.com]
> > Sent: Thursday, September 25, 2003 11:15 AM
> > To: Jesse Pelton
> > Cc: Slava Kostin; xmlsec at aleksey.com
> > Subject: Re: [xmlsec] XPATH and Visa 3D-secure specification
> > > I think that's the core question: does the Visa spec call
> > for handling their
> > > CDATA "id" attribute as if it were an ID? I don't know
> > anything about the
> > > spec, except that it causes this question to arise periodically
> > > (occasionally inducing me to rant). Slava, can you point
> > to it, or excerpt
> > > relevant sections?
> > It doesn't matter; if they are using "URI=#..." in the
> > Reference, then
> > it must be an ID or they are not compliant with the DSIG spec.
> > /r$
> xmlsec mailing list
> xmlsec at aleksey.com
Sign petition against software patents: http://petition.eurolinux.org
More information about the xmlsec