¥Address maintenance of
required/optional algorithms
–Define
profiles or suites a la TLS?
–Registry?
¥Review, simplify, unify XML
canonicalization
–Reference
processing when needed vs. signature processing
–Inclusive,
Exclusive, Minimal etc
–Desired
properties: Idempotent canonicalization, ?
¥Adjust required algorithms
given changes in patents
–DSAwithSHA1
required vs. RSAwithSHA1 recommended
¥New algorithm classes and
algorithms
–Randomization,
RSA-PSS, RMX
–NSA
Cryptosuite B
¥Key Handling
–X509Data
update (v3 trust path, OCSP)
–ÒBareÓ keys