This is how bad XML-DSig is: I convinced Hans that ASN.1 was better, in a single tweet.https://twitter.com/n0nst1ck/status/1254956067936563200 …
-
Show this thread
-
And all that tweet said was “consider that ASN.1 would be better than DSig”. If you’ve implemented DSig before you instantly just know it’s true: it would honestly be easier to implement SAML (safer, too, but also just easier) in DER.
4 replies 0 retweets 5 likesShow this thread
Replying to @tqbf
I remember reading an article about xml dsig in usenix magazine 15 years ago, and I was sure it was scigen output. I emailed the editor, and they assured me it had been reviewed and wasn't gibberish. I think they got fooled, not a good sign if experts can't tell lol.
0 replies
1 retweet
5 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.