When applying XML Encryption [XMLENC], e.g. in EncryptedAssertion, EncryptedID, or EncryptedAttribute, the nested method of key conveyance MUST be used, i.e. key is carried in EncryptedAssertion/EncryptedData/KeyInfo/EncryptedKey. The sibling method that uses EncryptedAssertion/EncryptedKey MUST NOT be used.
When applying [XMLDSIG], the InclusiveNamespaces/@PrefixList MUST NOT contain prefixes that are not defined in the XML document.