[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [office] Encryption and data leakage
I don't disagree. 1. I would not use the ODF manifest-carried encryption in the outer Zip at all, though. Aren't there W3C XML formats for that specific task that we can use so we are freed from defining and maintaining a custom mapping to ODF-defined attributes and elements? 2. I think this encryption should be decoupled completely from content signings and whatever those signings attest to and are non-reputable concerning. 3. I am not sure what it means to sign the outer package. If there is some sort of authentication against damage or substitution of the package, that is usually done by providing an external, possibly-signed message authenticator. I'm not sure what in-wrapper signing can be done that can't simply be removed or replaced, and it won't be a signature of what the user sees in the decrypted document in any case. The decryption should have its own checks against damage, and the Zip will already have a CRC32 of the encrypted payload. 4. I suppose the encryption information could carry a stronger message-authentication check on the unencrypted/encrypted payload, but that/those would be encrypted along with the decryption key. I think David LeBlanc has already made suggestions on this aspect. It would be useful to explore what XML Encryption already provides for this. OOPS, now there are comments from him I have not read yet ... - Dennis -----Original Message----- From: robert_weir@us.ibm.com [mailto:robert_weir@us.ibm.com] <http://lists.oasis-open.org/archives/office/201005/msg00281.html> Sent: Wednesday, May 12, 2010 09:32 To: dennis.hamilton@acm.org Cc: office@lists.oasis-open.org Subject: RE: [office] Encryption and data leakage I think you are agreeing with me. I'm certainly am agreeing with you. Let me know if you disagree, -Rob "Dennis E. Hamilton" <dennis.hamilton@acm.org> wrote on 05/12/2010 12:20:11 PM: <http://lists.oasis-open.org/archives/office/201005/msg00280.html> > > RE: [office] Encryption and data leakage > > Rob, I'm not sure I understand which approach these last concerns are about. > (I see there are now later notes in this exchange while I was writing this, > so I may be even more out of sync than I think already.) > [ ... ]
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]