Showing:

Annotations
Attributes
Diagrams
Instances
Model
Properties
Source
Used by
Element BindingType / Signer
Namespace urn:us:gov:ic:tdf
Annotations

Information pertaining to the person or entity that performed the signing/binding and their credentials.

Diagram
Diagram IC-TDF_xsd_Complex_Type_BindingType.tmp#BindingType_BindingType_Signer_subject IC-TDF_xsd_Complex_Type_BindingType.tmp#BindingType_BindingType_Signer_issuer IC-TDF_xsd_Complex_Type_BindingType.tmp#BindingType_BindingType_Signer_serial
Properties
content complex
minOccurs 1
maxOccurs 1
Attributes
QName Type Use Annotation
issuer xs:string optional

The distinguished name of the authority that issued the credentials to the subject. Refer to RFC 5280 for more information.

serial xs:string optional

The unique serial number of the credentials given to the subject by the issuer. Refer to RFC 5280 for more information.

subject xs:string optional

The distinguished name of the person or entity who is doing the signing. Refer to RFC 5280 for more information.

Source
<xs:element name="Signer" maxOccurs="1" minOccurs="1">
  <xs:annotation>
    <xs:documentation>
      <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">Information pertaining to the person or entity that performed the signing/binding and their credentials.</p>
    </xs:documentation>
  </xs:annotation>
  <xs:complexType>
    <xs:attribute name="subject" type="xs:string">
      <xs:annotation>
        <xs:documentation>
          <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">The distinguished name of the person or entity who is doing the signing. Refer to RFC 5280 for more information.</p>
        </xs:documentation>
      </xs:annotation>
    </xs:attribute>
    <xs:attribute name="issuer" type="xs:string">
      <xs:annotation>
        <xs:documentation>
          <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">The distinguished name of the authority that issued the credentials to the subject. Refer to RFC 5280 for more information.</p>
        </xs:documentation>
      </xs:annotation>
    </xs:attribute>
    <xs:attribute name="serial" type="xs:string">
      <xs:annotation>
        <xs:documentation>
          <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">The unique serial number of the credentials given to the subject by the issuer. Refer to RFC 5280 for more information.</p>
        </xs:documentation>
      </xs:annotation>
    </xs:attribute>
  </xs:complexType>
</xs:element>
Schema location IC-TDF.xsd Copy and paste this link to your file browser, clicking the link MAY open in the browser. Opening in an XML aware editor is best.
Element BindingType / SignatureValue
Namespace urn:us:gov:ic:tdf
Annotations

Stores the value of the Signature over the bound entities.

Diagram
Diagram IC-TDF_xsd_Complex_Type_SignatureValueType.tmp#SignatureValueType_signatureAlgorithm IC-TDF_xsd_Attribute_normalizationMethod.tmp#normalizationMethod IC-TDF_xsd_Attribute_includesStatementMetadata.tmp#includesStatementMetadata IC-TDF_xsd_Complex_Type_SignatureValueType.tmp#SignatureValueType
Type SignatureValueType
Properties
content complex
minOccurs 1
maxOccurs 1
Attributes
QName Type Use Annotation
includesStatementMetadata xs:boolean optional

Used to indicate whether or not to include element StatementMetadata when referencing an Assertion. In the case of signatures and binding, this attribute indicates whether or not the statement metadata is covered by the signature or binding. If not, it cannot be cryptographically verified and should be considered informative only. IncludesStatementMetadata should never be set on SignatureValue if there is a boundValueList, because the BoundValue elements in the list each have their own explicit includesStatementMetadata attribute.

normalizationMethod xs:anyURI required

A URI that provides guidance on how to format the included values such as whitespace, attributes, and child nodes in a universally consistent manner. The normalization method is essential to prevent formatting such as whitespace and order from interfering with the validation of the cryptographic integrity of data.

signatureAlgorithm CVEnumTDFSignatureAlgorithm required

The algorithm or pattern used by the signature. The permissible values are defined in the Controlled Value Enumeration: CVEnumTDFSignatureAlgorithm.xml

Source
<xs:element name="SignatureValue" type="SignatureValueType" minOccurs="1" maxOccurs="1">
  <xs:annotation>
    <xs:documentation>
      <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">Stores the value of the Signature over the bound entities.</p>
    </xs:documentation>
  </xs:annotation>
</xs:element>
Schema location IC-TDF.xsd Copy and paste this link to your file browser, clicking the link MAY open in the browser. Opening in an XML aware editor is best.
Element BindingType / BoundValueList
Namespace urn:us:gov:ic:tdf
Annotations

BoundValueList is a container of bound value references that point to the elements that are included in a cryptographic binding. The intent of the BoundValueList is to allow granular control over the scope of the binding signature. In the future, when BoundValueList is present, the SignatureValue will be calculated over the normalized value of the BoundValueList using the normalization method denoted in the Binding/SignatureValue/@normalizationMethod attribute.

Diagram
Diagram IC-TDF_xsd_Complex_Type_BoundValueListType.tmp#BoundValueListType_BoundValue IC-TDF_xsd_Complex_Type_BoundValueListType.tmp#BoundValueListType
Type BoundValueListType
Properties
content complex
minOccurs 0
maxOccurs 1
Model
Children BoundValue
Instance
<BoundValueList xmlns="urn:us:gov:ic:tdf">
  <BoundValue hashAlgorithm="" idRef="" includesStatementMetadata="" normalizationMethod="">{1,unbounded}</BoundValue>
</BoundValueList>
Source
<xs:element name="BoundValueList" type="BoundValueListType" minOccurs="0" maxOccurs="1">
  <xs:annotation>
    <xs:documentation>
      <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">BoundValueList is a container of bound value references that point to the elements that are included in a cryptographic binding. The intent of the BoundValueList is to allow granular control over the scope of the binding signature. In the future, when BoundValueList is present, the SignatureValue will be calculated over the normalized value of the BoundValueList using the normalization method denoted in the Binding/SignatureValue/@normalizationMethod attribute.</p>
    </xs:documentation>
  </xs:annotation>
</xs:element>
Schema location IC-TDF.xsd Copy and paste this link to your file browser, clicking the link MAY open in the browser. Opening in an XML aware editor is best.
Complex Type BindingType
Namespace urn:us:gov:ic:tdf
Annotations

A list of the objects that belong to the scope of the assertion.

Diagram
Diagram IC-TDF_xsd_Complex_Type_BindingType.tmp#BindingType_Signer IC-TDF_xsd_Complex_Type_BindingType.tmp#BindingType_SignatureValue IC-TDF_xsd_Complex_Type_BindingType.tmp#BindingType_BoundValueList
Used by
Model
Children BoundValueList , SignatureValue , Signer
Source
<xs:complexType name="BindingType">
  <xs:annotation>
    <xs:documentation>
      <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">A list of the objects that belong to the scope of the assertion.</p>
    </xs:documentation>
  </xs:annotation>
  <xs:sequence>
    <!-- This order is important because it allows for a single pass 
                verification of the actual SignatureValue using a streaming parser -->
    <xs:choice>
      <xs:element name="Signer" maxOccurs="1" minOccurs="1">
        <xs:annotation>
          <xs:documentation>
            <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">Information pertaining to the person or entity that performed the signing/binding and their credentials.</p>
          </xs:documentation>
        </xs:annotation>
        <xs:complexType>
          <xs:attribute name="subject" type="xs:string">
            <xs:annotation>
              <xs:documentation>
                <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">The distinguished name of the person or entity who is doing the signing. Refer to RFC 5280 for more information.</p>
              </xs:documentation>
            </xs:annotation>
          </xs:attribute>
          <xs:attribute name="issuer" type="xs:string">
            <xs:annotation>
              <xs:documentation>
                <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">The distinguished name of the authority that issued the credentials to the subject. Refer to RFC 5280 for more information.</p>
              </xs:documentation>
            </xs:annotation>
          </xs:attribute>
          <xs:attribute name="serial" type="xs:string">
            <xs:annotation>
              <xs:documentation>
                <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">The unique serial number of the credentials given to the subject by the issuer. Refer to RFC 5280 for more information.</p>
              </xs:documentation>
            </xs:annotation>
          </xs:attribute>
        </xs:complexType>
      </xs:element>
    </xs:choice>
    <xs:element name="SignatureValue" type="SignatureValueType" minOccurs="1" maxOccurs="1">
      <xs:annotation>
        <xs:documentation>
          <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">Stores the value of the Signature over the bound entities.</p>
        </xs:documentation>
      </xs:annotation>
    </xs:element>
    <xs:element name="BoundValueList" type="BoundValueListType" minOccurs="0" maxOccurs="1">
      <xs:annotation>
        <xs:documentation>
          <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">BoundValueList is a container of bound value references that point to the elements that are included in a cryptographic binding. The intent of the BoundValueList is to allow granular control over the scope of the binding signature. In the future, when BoundValueList is present, the SignatureValue will be calculated over the normalized value of the BoundValueList using the normalization method denoted in the Binding/SignatureValue/@normalizationMethod attribute.</p>
        </xs:documentation>
      </xs:annotation>
    </xs:element>
  </xs:sequence>
</xs:complexType>
Schema location IC-TDF.xsd Copy and paste this link to your file browser, clicking the link MAY open in the browser. Opening in an XML aware editor is best.
Attribute BindingType / Signer / @subject
Namespace urn:us:gov:ic:tdf
Annotations

The distinguished name of the person or entity who is doing the signing. Refer to RFC 5280 for more information.

Type xs:string
Properties
content simple
Used by
Source
<xs:attribute name="subject" type="xs:string">
  <xs:annotation>
    <xs:documentation>
      <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">The distinguished name of the person or entity who is doing the signing. Refer to RFC 5280 for more information.</p>
    </xs:documentation>
  </xs:annotation>
</xs:attribute>
Schema location IC-TDF.xsd Copy and paste this link to your file browser, clicking the link MAY open in the browser. Opening in an XML aware editor is best.
Attribute BindingType / Signer / @issuer
Namespace urn:us:gov:ic:tdf
Annotations

The distinguished name of the authority that issued the credentials to the subject. Refer to RFC 5280 for more information.

Type xs:string
Properties
content simple
Used by
Source
<xs:attribute name="issuer" type="xs:string">
  <xs:annotation>
    <xs:documentation>
      <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">The distinguished name of the authority that issued the credentials to the subject. Refer to RFC 5280 for more information.</p>
    </xs:documentation>
  </xs:annotation>
</xs:attribute>
Schema location IC-TDF.xsd Copy and paste this link to your file browser, clicking the link MAY open in the browser. Opening in an XML aware editor is best.
Attribute BindingType / Signer / @serial
Namespace urn:us:gov:ic:tdf
Annotations

The unique serial number of the credentials given to the subject by the issuer. Refer to RFC 5280 for more information.

Type xs:string
Properties
content simple
Used by
Source
<xs:attribute name="serial" type="xs:string">
  <xs:annotation>
    <xs:documentation>
      <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">The unique serial number of the credentials given to the subject by the issuer. Refer to RFC 5280 for more information.</p>
    </xs:documentation>
  </xs:annotation>
</xs:attribute>
Schema location IC-TDF.xsd Copy and paste this link to your file browser, clicking the link MAY open in the browser. Opening in an XML aware editor is best.

This document has been approved for Public Release by the Office of the Director of National Intelligence. See Distribution Notice for details. Click Here