Showing:

Annotations
Attributes
Diagrams
Instances
Properties
Source
Used by
Element BindingType / Signer
Namespace urn:us:gov:ic:tdf
Annotations

Information pertaining to the person or entity that performed the signing/binding and their credentials.

Diagram
Diagram IC-TDF_xsd_Complex_Type_BindingType.tmp#BindingType_BindingType_Signer_subject IC-TDF_xsd_Complex_Type_BindingType.tmp#BindingType_BindingType_Signer_issuer IC-TDF_xsd_Complex_Type_BindingType.tmp#BindingType_BindingType_Signer_serial
Properties
content: complex
minOccurs: 1
maxOccurs: 1
Attributes
QName Type Fixed Default Use Annotation
issuer xs:string optional

The distingusihed name of the authority that issued the credentials to the subject. Refer to RFC 5280 for more informaiton.

serial xs:string optional

The unique serial number of the credentials given to the subject by the issuer. Refer to RFC 5280 for more information.

subject xs:string optional

The distinguished name of the person or entity who is doing the signing. Refer to RFC 5280 for more information.

Source
<xs:element name="Signer" maxOccurs="1" minOccurs="1">
  <xs:annotation>
    <xs:documentation>
      <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">Information pertaining to the person or entity that performed the signing/binding and their credentials.</p>
    </xs:documentation>
  </xs:annotation>
  <xs:complexType>
    <xs:attribute name="subject" type="xs:string">
      <xs:annotation>
        <xs:documentation>
          <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">The distinguished name of the person or entity who is doing the signing. Refer to RFC 5280 for more information.</p>
        </xs:documentation>
      </xs:annotation>
    </xs:attribute>
    <xs:attribute name="issuer" type="xs:string">
      <xs:annotation>
        <xs:documentation>
          <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">The distingusihed name of the authority that issued the credentials to the subject. Refer to RFC 5280 for more informaiton.</p>
        </xs:documentation>
      </xs:annotation>
    </xs:attribute>
    <xs:attribute name="serial" type="xs:string">
      <xs:annotation>
        <xs:documentation>
          <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">The unique serial number of the credentials given to the subject by the issuer. Refer to RFC 5280 for more information.</p>
        </xs:documentation>
      </xs:annotation>
    </xs:attribute>
  </xs:complexType>
</xs:element>
Schema location IC-TDF.xsd
Element BindingType / SignatureValue
Namespace urn:us:gov:ic:tdf
Diagram
Diagram IC-TDF_xsd_Complex_Type_SignatureValueType.tmp#SignatureValueType_signatureAlgorithm IC-TDF_xsd_Attribute_normalizationMethod.tmp#normalizationMethod IC-TDF_xsd_Attribute_includesStatementMetadata.tmp#includesStatementMetadata IC-TDF_xsd_Complex_Type_SignatureValueType.tmp#SignatureValueType
Type SignatureValueType
Properties
content: complex
minOccurs: 1
maxOccurs: 1
Attributes
QName Type Fixed Default Use Annotation
includesStatementMetadata xs:boolean optional

Used to indicate whether or not to include element StatementMetadata when referencing an Assertion. In the case of signatures and binding, this attribute indicates whether or not the statement metadata is covered by the signature or binding. If not, it cannot be cryptographically verified and should be considered informative only. IncludesStatementMetadata should never be set on SignatureValue if there is a boundValueList, because the BoundValue elements in the list each have their own explicit includesStatementMetadata attribute.

normalizationMethod xs:anyURI required

A URI that provides guidance on how to format the included values such as whitespace, attributes, and child nodes in a universally consistent manner. The normalization method is essential to prevent formatting such as whitespace and order from interfering with the validation of the cryptographic integrity of data.

signatureAlgorithm CVEnumTDFSignatureAlgorithm required

The algorithm or pattern used by the signature. The permissible values are defined in the Controlled Value Enumeration: CVEnumTDFSignatureAlgorithm.xml

Source
<xs:element name="SignatureValue" type="SignatureValueType" minOccurs="1" maxOccurs="1"/>
Schema location IC-TDF.xsd
Element BindingType / BoundValueList
Namespace urn:us:gov:ic:tdf
Diagram
Diagram IC-TDF_xsd_Complex_Type_BoundValueListType.tmp#BoundValueListType_BoundValue IC-TDF_xsd_Complex_Type_BoundValueListType.tmp#BoundValueListType
Type BoundValueListType
Properties
content: complex
minOccurs: 0
maxOccurs: 1
Model BoundValue+
Children BoundValue
Instance
<BoundValueList xmlns="urn:us:gov:ic:tdf">
  <BoundValue hashAlgorithm="" idRef="" includesStatementMetadata="" normalizationMethod="">{1,unbounded}</BoundValue>
</BoundValueList>
Source
<xs:element name="BoundValueList" type="BoundValueListType" minOccurs="0" maxOccurs="1"/>
Schema location IC-TDF.xsd
Complex Type BindingType
Namespace urn:us:gov:ic:tdf
Diagram
Diagram IC-TDF_xsd_Complex_Type_BindingType.tmp#BindingType_Signer IC-TDF_xsd_Complex_Type_BindingType.tmp#BindingType_SignatureValue IC-TDF_xsd_Complex_Type_BindingType.tmp#BindingType_BoundValueList
Used by
Model (Signer) , SignatureValue , BoundValueList{0,1}
Children BoundValueList, SignatureValue, Signer
Source
<xs:complexType name="BindingType">
  <xs:sequence>
    <!-- This order is important because it allows for a single pass verification of the actual SignatureValue using a streaming parser -->
    <xs:choice>
      <xs:element name="Signer" maxOccurs="1" minOccurs="1">
        <xs:annotation>
          <xs:documentation>
            <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">Information pertaining to the person or entity that performed the signing/binding and their credentials.</p>
          </xs:documentation>
        </xs:annotation>
        <xs:complexType>
          <xs:attribute name="subject" type="xs:string">
            <xs:annotation>
              <xs:documentation>
                <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">The distinguished name of the person or entity who is doing the signing. Refer to RFC 5280 for more information.</p>
              </xs:documentation>
            </xs:annotation>
          </xs:attribute>
          <xs:attribute name="issuer" type="xs:string">
            <xs:annotation>
              <xs:documentation>
                <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">The distingusihed name of the authority that issued the credentials to the subject. Refer to RFC 5280 for more informaiton.</p>
              </xs:documentation>
            </xs:annotation>
          </xs:attribute>
          <xs:attribute name="serial" type="xs:string">
            <xs:annotation>
              <xs:documentation>
                <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">The unique serial number of the credentials given to the subject by the issuer. Refer to RFC 5280 for more information.</p>
              </xs:documentation>
            </xs:annotation>
          </xs:attribute>
        </xs:complexType>
      </xs:element>
    </xs:choice>
    <xs:element name="SignatureValue" type="SignatureValueType" minOccurs="1" maxOccurs="1"/>
    <xs:element name="BoundValueList" type="BoundValueListType" minOccurs="0" maxOccurs="1"/>
  </xs:sequence>
</xs:complexType>
Schema location IC-TDF.xsd
Attribute BindingType / Signer / @subject
Namespace urn:us:gov:ic:tdf
Annotations

The distinguished name of the person or entity who is doing the signing. Refer to RFC 5280 for more information.

Type xs:string
Properties
content: simple
Used by
Source
<xs:attribute name="subject" type="xs:string">
  <xs:annotation>
    <xs:documentation>
      <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">The distinguished name of the person or entity who is doing the signing. Refer to RFC 5280 for more information.</p>
    </xs:documentation>
  </xs:annotation>
</xs:attribute>
Schema location IC-TDF.xsd
Attribute BindingType / Signer / @issuer
Namespace urn:us:gov:ic:tdf
Annotations

The distingusihed name of the authority that issued the credentials to the subject. Refer to RFC 5280 for more informaiton.

Type xs:string
Properties
content: simple
Used by
Source
<xs:attribute name="issuer" type="xs:string">
  <xs:annotation>
    <xs:documentation>
      <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">The distingusihed name of the authority that issued the credentials to the subject. Refer to RFC 5280 for more informaiton.</p>
    </xs:documentation>
  </xs:annotation>
</xs:attribute>
Schema location IC-TDF.xsd
Attribute BindingType / Signer / @serial
Namespace urn:us:gov:ic:tdf
Annotations

The unique serial number of the credentials given to the subject by the issuer. Refer to RFC 5280 for more information.

Type xs:string
Properties
content: simple
Used by
Source
<xs:attribute name="serial" type="xs:string">
  <xs:annotation>
    <xs:documentation>
      <p xmlns="http://www.w3.org/1999/xhtml" ism:classification="U" ism:ownerProducer="USA">The unique serial number of the credentials given to the subject by the issuer. Refer to RFC 5280 for more information.</p>
    </xs:documentation>
  </xs:annotation>
</xs:attribute>
Schema location IC-TDF.xsd

This document has been approved for Public Release by the Office of the Director of National Intelligence. See 'Distribution Notice' for details. Click Here