RE: [dss] Representing requestor's identity

[Trevor Perrin <trevp@trevp.net>]

At 02:51 PM 4/30/2003 -0400, jmessing wrote:

>I hope that you appreciate that is not about signer intent or signature 
>policies.
>
>It is about ways to enable the avoidance of unpleasant legal consequences 
>by having the necessary information inevitably present as metadata where 
>an enterprise has many people signing for it using a single key.

That's a good idea.  But it's reasonable for standards to be designed in 
layers.  I think our core protocol should concern itself with the lower 
layer of passing data to the server and receiving back a cryptographic 
signature.

What this signature means or doesn't mean, or what legal consequences it 
entails, should be for other standards that build on top of the DSS 
mechanism to decide.

Trevor