2.2.1.7.1.1 Supported Algorithms

This document supports the algorithms specified in [BSP] sections 8.3, 8.4, 8.6, and 8.7. The following passages are overridden:

[BSP] section 8.2.5: "R3002 Any SIG_REFERENCE to an element that does not have an ID attribute MUST contain a TRANSFORM with an Algorithm attribute value of "http://www.w3.org/2002/06/xmldsig-filter2."

The ID attribute MUST be present in elements to which there are SIG_REFERENCE elements, and the "http://www.w3.org/2002/06/xmldsig-filter2" algorithm MUST NOT be used.

[BSP] section 8.4.1: "R5404 Any CANONICALIZATION_METHOD Algorithm attribute MUST have a value of "http://www.w3.org/2001/10/xml-exc-c14n#" indicating that it uses Exclusive C14N without comments for canonicalization."

The following values SHOULD be supported:

• http://www.w3.org/2001/10/xml-exc-c14n#

• http://www.w3.org/2001/10/xml-exc-c14n#WithComments

[BSP] section 8.6.1: "R5420 Any DIGEST_METHOD Algorithm attribute SHOULD have a value of "http://www.w3.org/2000/09/xmldsig#sha1"."

The following values SHOULD be supported:

• http://www.w3.org/2000/09/xmldsig#sha1

• http://www.w3.org/2001/04/xmlenc#sha256

• http://www.w3.org/2001/04/xmlenc#sha384

• http://www.w3.org/2001/04/xmlenc#sha512

[BSP] section 8.7.1: "R5421 Any SIGNATURE_METHOD Algorithm attribute SHOULD have a value of "http://www.w3.org/2000/09/xmldsig#hmac-sha1" or "http://www.w3.org/2000/09/xmldsig#rsa-sha1"."

The following values SHOULD be supported:

• http://www.w3.org/2000/09/xmldsig#hmac-sha1

• http://www.w3.org/2001/04/xmldsig-more#hmac-sha256

• http://www.w3.org/2001/04/xmldsig-more#hmac-sha384

• http://www.w3.org/2001/04/xmldsig-more#hmac-sha512

The following values MAY<1> be supported:

• http://www.w3.org/2000/09/xmldsig#rsa-sha1

• http://www.w3.org/2000/09/xmldsig#dsa-sha1

• http://www.w3.org/2001/04/xmldsig-more#rsa-sha256

• http://www.w3.org/2001/04/xmldsig-more#rsa-sha384

• http://www.w3.org/2001/04/xmldsig-more#rsa-sha512