IS-50 Sweden Connect logo

ELN-0602 - Deployment Profile for the Swedish eID Framework.md

@@ -2,7 +2,7 @@
 
 # Deployment Profile for the Swedish eID Framework
 
-### Version 1.6 - 2019-05-22 - **Draft version**
+### Version 1.6 - 2019-08-28 - **Draft version**
 
 *ELN-0602-v1.6*
 
@@ -1298,11 +1298,11 @@ response with the status code `urn:oasis:names:tc:SAML:2.0:status:AuthnFailed`.
 
 <a name="eidattributes"></a>
 **\[EidAttributes\]**
-> [Attribute Specification for the Swedish eID Framework](https://docs.swedenconnect.se/technical-framework/latest/ELN-0604_-_Attribute_Specification_for_the_Swedish_eID_Framework.html).
+> [Attribute Specification for the Swedish eID Framework](https://docs.swedenconnect.se/technical-framework/updates/ELN-0604_-_Attribute_Specification_for_the_Swedish_eID_Framework.html).
 
 <a name="eidtillit"></a>
 **\[EidTillit\]**
-> [Tillitsramverk för Svensk e-legitimation - version 1.4](https://docs.swedenconnect.se/technical-framework/mirror/elegnamnden/Tillitsramverk-for-Svensk-e-legitimation-1.4.pdf)
+> [Tillitsramverk för Svensk e-legitimation - 2018-158](https://docs.swedenconnect.se/technical-framework/mirror/digg/Tillitsramverk-for-Svensk-e-legitimation-2018-158.pdf)
 
 <a name="eidentcat"></a>
 **\[EidEntCat\]**
@@ -1334,6 +1334,7 @@ response with the status code `urn:oasis:names:tc:SAML:2.0:status:AuthnFailed`.
 - In order to facilitate algorithm interoperability between peers additions concerning "Metadata Profile for Algorithm Support" \[[SAML2MetaAlgSupport](#saml2metaalg)\] was added. Section 2.1.1 was updated with a section defining how preferred algorithms are declared in metadata, and sections 5.2, 6.1 and 7.2.1 was updated with requirements for algorithm selection during signing and encryption.
 - Section 5.3, "Message Content", was re-structured with sub-chapters for requested authentication contexts, scoping and principal selection.
 - The `PrincipalSelection` and `RequestedPrincipalSelection` extensions were introduced to sections 2.1.3, 5.3.3 and 7.2.
+- The link for the "Tillitsramverk för Svensk e-legitimation" specification was updated.
 
 **Changes between version 1.4 and 1.5:**
 

ELN-0603 - Registry for Identifiers.md

@@ -2,7 +2,7 @@
 
 # Swedish eID Framework - Registry for identifiers
 
-### Version 1.6 - 2019-08-20 - *Draft version*
+### Version 1.6 - 2019-08-28 - *Draft version*
 
 *ELN-0603-v1.6*
 
@@ -472,7 +472,7 @@ The following OIDs are defined in the ASN.1 declarations in [3.2.1](#asn1-declar
 
 <a name="tillitramv"></a>
 **\[TillitRamv\]**
-> [Tillitsramverk för Svensk e-legitimation version 1.4](http://elegnamnden.github.io/technical-framework/mirror/elegnamnden/Tillitsramverk-for-Svensk-e-legitimation-1.4.pdf).
+> [Tillitsramverk för Svensk e-legitimation - 2018-158](https://docs.swedenconnect.se/technical-framework/mirror/digg/Tillitsramverk-for-Svensk-e-legitimation-2018-158.pdf).
 
 <a name="authcontext"></a>
 **\[AuthContExt\]**
@@ -534,6 +534,8 @@ The following OIDs are defined in the ASN.1 declarations in [3.2.1](#asn1-declar
 
 - Section 3.1.9.2, "eIDAS Connector Aliases", defining the URI format for representing country affiliation of eIDAS connector services, was added.
 
+- - The link for the "Tillitsramverk för Svensk e-legitimation" specification was updated.
+
 **Changes between version 1.4 and version 1.5:**
 
 - Added identifier for the service property entity category `http://id.elegnamnden.se/sprop/1.0/scal2`

ELN-0604 - Attribute Specification for the Swedish eID Framework.md

@@ -1,10 +1,10 @@
-<img src="img/eln-logo.png"></img>
+<img src="img/sweden-connect.png"></img>
 
 # Attribute Specification for the Swedish eID Framework
 
-### Version 1.5 - 2018-06-19
+### Version 1.6 - 2019-08-28 - *Draft version*
 
-*ELN-0604-v1.5*
+*ELN-0604-v1.6*
 
 ---
 
@@ -571,16 +571,16 @@ following attribute:
 <a name="skv704"></a>
 **\[SKV704\]**
 > [Skatteverket, SKV 704 Utgåva 8,
-> Personnummer](http://elegnamnden.github.io/technical-framework/mirror/skv/skv704-8.pdf).
+> Personnummer](https://docs.swedenconnect.se/technical-framework/mirror/skv/skv704-8.pdf).
 
 <a name="skv707"></a>
 **\[SKV707\]**
 > [Skatteverket, SKV 707, Utgåva 2,
-> Samordningsnummer](http://elegnamnden.github.io/technical-framework/mirror/skv/skv707-2.pdf).
+> Samordningsnummer](https://docs.swedenconnect.se/technical-framework/mirror/skv/skv707-2.pdf).
 
 <a name="skv709"></a>
 **\[SKV709\]**
-> [Skatteverket, SKV 709, Utgåva 8, Organisationsnummer](http://elegnamnden.github.io/technical-framework/mirror/skv/skv709-8.pdf).
+> [Skatteverket, SKV 709, Utgåva 8, Organisationsnummer](https://docs.swedenconnect.se/technical-framework/mirror/skv/skv709-8.pdf).
 
 <a name="x520"></a>
 **\[X.520\]**
@@ -604,30 +604,33 @@ following attribute:
 
 <a name="tillitramv"></a>
 **\[TillitRamv\]**
-> [Tillitsramverk för Svensk e-legitimation version 1.3](http://elegnamnden.github.io/technical-framework/mirror/elegnamnden/Tillitsramverk-for-Svensk-e-legitimation-1.3.pdf)
-> 
-> [Tillitsramverk för Svensk e-legitimation version 1.4](http://elegnamnden.github.io/technical-framework/mirror/elegnamnden/Tillitsramverk-for-Svensk-e-legitimation-1.4.pdf) - Valid from 2018-08-20.
+> [Tillitsramverk för Svensk e-legitimation - 2018-158](https://docs.swedenconnect.se/technical-framework/mirror/digg/Tillitsramverk-for-Svensk-e-legitimation-2018-158.pdf)
+
 
 <a name="eiddeployprof"></a>
 **\[EidDeployProf\]**
-> [Deployment Profile for the Swedish eID Framework](http://elegnamnden.github.io/technical-framework/latest/ELN-0602_-_Deployment_Profile_for_the_Swedish_eID_Framework.html).
+> [Deployment Profile for the Swedish eID Framework](https://docs.swedenconnect.se/technical-framework/updates/ELN-0602_-_Deployment_Profile_for_the_Swedish_eID_Framework.html).
 
 <a name="constructedattr"></a>
 **\[ConstructedAttr\]**
 > [eIDAS Constructed Attributes Specification for the Swedish eID
-> Framework](http://elegnamnden.github.io/technical-framework/latest/ELN-0611_-_eIDAS_Constructed_Attributes_Specification_for_the_Swedish_eID_Framework.html).
+> Framework](https://docs.swedenconnect.se/technical-framework/updates/ELN-0611_-_eIDAS_Constructed_Attributes_Specification_for_the_Swedish_eID_Framework.html).
 
 <a name="eidas-attr"></a>
 **\[eIDAS\_Attr\]**
-> [eIDAS SAML Attribute Profile, 28 October 2016](https://ec.europa.eu/cefdigital/wiki/download/attachments/46992719/eIDAS%20SAML%20Attribute%20Profile%20v1.1_2.pdf).
+> [eIDAS SAML Attribute Profile, version 1.2, 21 May 2019](https://docs.swedenconnect.se/technical-framework/mirror/eidas/eIDAS_SAML_Attribute_Profile_v1.2-FINAL.pdf).
 
 <a name="sigsap"></a>
 **\[SigSAP\]**
-> [Signature Activation Protocol for Federated Signing](http://elegnamnden.github.io/technical-framework/latest/ELN-0613_-_Signature_Activation_Protocol.html).
+> [Signature Activation Protocol for Federated Signing](https://docs.swedenconnect.se/technical-framework/updates/ELN-0613_-_Signature_Activation_Protocol.html).
 
 <a name="changes-between-versions"></a>
 ## 5. Changes between versions
 
+**Changes between version 1.5 and version 1.6:**
+
+- References were updated to point at the latest versions of the "Tillitsramverk för Svensk e-legitimation" and "eIDAS SAML Attribute Profile" specifications.
+
 **Changes between version 1.4 and version 1.5:**
 
 - Section 3.2.3 was updated with a reference to the SAP specification as source for defining the content of the `sad` attribute.

ELN-0607 - Implementation Profile for using DSS in Central Signing Services.md

@@ -1,10 +1,10 @@
-<img src="img/eln-logo.png"></img>
+<img src="img/sweden-connect.png"></img>
 
 #  Implementation Profile for using OASIS DSS in Central Signing Services
 
-### Version 1.3 - 2018-06-19
+### Version 1.4 - 2019-08-28 - *Draft version*
 
-*ELN-0607-v1.3*
+*ELN-0607-v1.4*
 
 ---
 
@@ -242,7 +242,7 @@ Service MUST reject the sign request.
 <a name="identityprovider"></a>
 ##### 2.1.3.4. IdentityProvider
 
-This element MUST be present, specifying the SAML EntityID of the
+This element MUST be present, specifying the SAML entityID of the
 Identity Provider that MUST be used to authenticate the signer. The
 Signing Service MUST NOT generate the requested signature unless the
 signer is successfully authenticated through this Identity Provider.
@@ -251,12 +251,12 @@ signer is successfully authenticated through this Identity Provider.
 ##### 2.1.3.5. Sign Requester
 
 This element MUST be present, specifying the identity of the Requesting
-Service in the form of its SAML EntityID.
+Service in the form of its SAML entityID.
 
 <a name="signservice"></a>
 ##### 2.1.3.6 SignService
 
-This element MUST be present, specifying the SAML EntityID of the
+This element MUST be present, specifying the SAML entityID of the
 Signing Service that is the target of this sign request.
 
 <a name="requestedsignaturealgorithm"></a>
@@ -280,7 +280,7 @@ Provider MAY display for the user before obtaining the user’s consent to
 sign. The message MAY be provided in clear text or in encrypted form.
 The attribute `MustShow` MUST be set to `true` if the Identity Provider is
 required to show this message to the user. When the message is provided
-in encrypted form, the `DisplayEntity` attribute MUST include the EntityID
+in encrypted form, the `DisplayEntity` attribute MUST include the entityID
 of the Identity Provider holding the private decryption key. The
 encryption key included in the metadata of the identified Identity
 Provider SHOULD be used to encrypt the message.
@@ -295,7 +295,7 @@ attributes for each tag other than those listed in the following table:
 | HTML Tags | Type | Allowed attributes |
 | --- | --- | --- |
 | h1, h2, h3, h4 | Headings | style |
-| div, span, p | Section | style |
+| div, span, p | Section | style |
 | table, tr, td | Table | style |
 | b, strong | Highlight | style |
 | i, u, br | Format | &nbsp; |
@@ -416,7 +416,7 @@ The Signing Service MAY use an Attribute Authority as complementary
 source to obtain requested attribute values, as long as the identity
 assertion provided by the specified Identity Provider is sufficient to
 uniquely identify the signer. The Sign Requester MAY provide one or more
-SAML EntityID identifiers of Attribute Authorities in
+SAML entityID identifiers of Attribute Authorities in
 `<AttributeAuthority>` elements, which could be used to obtain an
 attribute value for the requested attribute.
 
@@ -587,7 +587,7 @@ equivalent to the following implementation example:
     <p><strong>Note:</strong> Since your browser does not support JavaScript,
     you must press the Continue button once to proceed.</p>
   </noscript>
-  <form action='https://eid2csig.konki.se/signrequest' method='post'>
+  <form action='https://csig.example.com/signrequest' method='post'>
     <div>
       <input type='hidden' name='Binding' value='POST/XML/1.0'/>
       <input type='hidden' name='RelayState' value='56345145a482995d'/>
@@ -632,7 +632,7 @@ equivalent to the following implementation example:
     <div>
       <input type='hidden' name='Binding' value='POST/XML/1.0'/>
       <input type='hidden' name='RelayState' value='56345145a482995d'/>
-      <input type='hidden' name=' EidSignResponse' value='PD94bWw…WVzdD4='/>
+      <input type='hidden' name='EidSignResponse' value='PD94bWw…WVzdD4='/>
     </div>
     <noscript>
       <div>
@@ -663,40 +663,52 @@ EidSignResponse | Base64 encoded sign response.
 <a name="normative-references"></a>
 ### 4.1. Normative References
 
-<a name="eid-profile"></a>**[Eid-Profile]**
-> [Deployment Profile for the Swedish eID Framework](http://elegnamnden.github.io/technical-framework/latest/ELN-0602_-_Deployment_Profile_for_the_Swedish_eID_Framework.html).
+<a name="rfc2119"></a>
+**[RFC2119]**
+>[Bradner, S., Key words for use in RFCs to Indicate Requirement Levels, March 1997.](http://www.ietf.org/rfc/rfc2119.txt).
 
-<a name="rfc2119"></a>**[RFC2119]**
->[Bradner, S., Key words for use in RFCs to Indicate Requirement Levels, March 1997.](http://www.ietf.org/rfc/rfc2119.txt)
-
-<a name="dss-ext"></a>**[DSS-Ext]**
-> [DSS Extension for Federated Central Signing Services](http://elegnamnden.github.io/technical-framework/latest/ELN-0609_-_DSS_Extension_for_Federated_Signing_Services.html).
-
-<a name="dss"></a>**[DSS]**
+<a name="dss"></a>
+**[DSS]**
 > [OASIS Standard - Digital Signature Service Core Protocols, Elements, and Bindings Version 1.0, April 11, 2007](https://docs.oasis-open.org/dss/v1.0/oasis-dss-core-spec-v1.0-os.html).
 
-<a name="saml-xsd"></a>**[SAML-XSD]**
+<a name="saml-xsd"></a>
+**[SAML-XSD]**
 > S. Cantor et al., SAML assertions schema. OASIS SSTC, March 2005. Document ID: saml-schema-assertion-2.0. See <http://www.oasisopen.org/committees/security/>.
 
-<a name="xmlsig"></a>**[XMLSig]**
-> D. Eastlake et al, XML-Signature Syntax and Processing, W3C Recommendation, February 2002.
+<a name="xmlsig"></a>
+**[XMLSig]**
+> D. Eastlake et al, [XML-Signature Syntax and Processing, W3C Recommendation, February 2002](https://www.w3.org/TR/2002/REC-xmldsig-core-20020212/).
+
+<a name="xmlsig-xsd"></a>
+**[XMLSig-XSD]**
+> XML Signature Schema. World Wide Web Consortium. See <https://www.w3.org/TR/xmldsig-core/xmldsig-core-schema.xsd>.
 
-<a name="xmlsig-xsd"></a>**[XMLSig-XSD]**
-> XML Signature Schema. World Wide Web Consortium. See <http://www.w3.org/TR/2000/CR-xmldsig-core-20001031/xmldsig-coreschema.xsd>.
+<a name="eid-profile"></a>
+**[Eid-Profile]**
+> [Deployment Profile for the Swedish eID Framework](https://docs.swedenconnect.se/technical-framework/latest/ELN-0602_-_Deployment_Profile_for_the_Swedish_eID_Framework.html).
 
-<a name="eid-registry"></a>**[Eid-Registry]**
-> [Registry for identifiers assigned by the Swedish e-identification
-> board](http://elegnamnden.github.io/technical-framework/latest/ELN-0603_-_Registry_for_Identifiers.html).
+<a name="dss-ext"></a>
+**[DSS-Ext]**
+> [DSS Extension for Federated Central Signing Services](https://docs.swedenconnect.se/technical-framework/latest/ELN-0609_-_DSS_Extension_for_Federated_Signing_Services.html).
+
+<a name="eid-registry"></a>
+**[Eid-Registry]**
+> [Swedish eID Framework - Registry for identifiers](https://docs.swedenconnect.se/technical-framework/latest/ELN-0603_-_Registry_for_Identifiers.html).
 
 <a name="informative-references"></a>
 ### 4.2. Informative References
 
-<a name="saml2bind"></a>**[SAML2Bind]**
-> [OASIS Standard, Bindings for the OASIS Security Assertion Markup Language (SAML) V2.0, March 2005.](http://docs.oasis-open.org/security/saml/v2.0/saml-bindings-2.0-os.pdf)
+<a name="saml2bind"></a>
+**[SAML2Bind]**
+> [OASIS Standard, Bindings for the OASIS Security Assertion Markup Language (SAML) V2.0, March 2005.](http://docs.oasis-open.org/security/saml/v2.0/saml-bindings-2.0-os.pdf).
 
 <a name="changes-between-versions"></a>
 ## 5. Changes between versions
 
+**Changes between version 1.3 and version 1.4:**
+
+- Updates of references and change of logotype.
+
 **Changes between version 1.2 and version 1.3:**
 
 - In section 2.1.3.9, "CertRequestProperties", an requirement to adapt authentication request procedures when the requested signature is a qualified electronic signature was added.