[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [dss] Representing requestor's identity
At 02:51 PM 4/30/2003 -0400, jmessing wrote: >I hope that you appreciate that is not about signer intent or signature >policies. > >It is about ways to enable the avoidance of unpleasant legal consequences >by having the necessary information inevitably present as metadata where >an enterprise has many people signing for it using a single key. That's a good idea. But it's reasonable for standards to be designed in layers. I think our core protocol should concern itself with the lower layer of passing data to the server and receiving back a cryptographic signature. What this signature means or doesn't mean, or what legal consequences it entails, should be for other standards that build on top of the DSS mechanism to decide. Trevor
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]