[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [dss] Pending / TryAgainLater
At 11:04 PM 4/9/2004 +0200, Andreas Kuehne wrote: >[....] >>If so, I assume the person with the smartcard isn't actually reviewing >>the invoices and signing requests (there's thousands of them). > >No, of course he doesn't. BUT : He has to have the chance (!) to look at >it ! This is an explicit demand of the sig law §17,(2). >[...] >Again it's §17 (2) : The card guy usually doesn't wait at the signing >server console for documents to check. So it's the accepted practice to >store documents on the signing server in a special 'inbox' for a ( >theoreticial ) review. >After a review period the documents from the inbox were forwarded to the >signing unit. This timeslot spans usally several hours. Okay. This "theoretical review" business sounds pretty goofy, I have to say. But if you gotta do it, you gotta do it.. I agree that what I was proposing is no good, you need a "real" asynch protocol. >>Out of curiosity, is that in one of these documents?: >>http://www.regtp.de/imperia/md/content/tech_reg_t/digisign/119.pdf >>http://www.regtp.de/imperia/md/content/tech_reg_t/digisign/120.pdf >Yes, but usually it's bit hidden : > > >'Chance to look at document' : 119.pdf, Section 17 (2) and 119.pdf, >Section 15 (2) 1.c >'Key on signing card' : 119.pdf, Section 15 (7). Only Signing Cards comply >with the mentioned regulations. >'Don't store the key card key' : 120.pdf, Section 15 (1) Thanks for these references. Trevor
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]