Download Firefox: WindowsMac OS X
logo       
Google Custom Search
    AddThis Social Bookmark Button
<prev   next>

RE: AS2-SMIME : has the certificate to be included inside thesignatu re?: msg#00004

Subject: RE: AS2-SMIME : has the certificate to be included inside thesignatu re? 
I was primarily thinking to do so, because it seems like it is standard
convention with S/MIME to do that when used for email.

Anyway, as a side thought, of course, one certificate has to be acquired
through an independent, trusted means.  However, that certificate does
not necessarily have to be the certificate used for signing the message.

Ie, couldn't the trusted Cert be a signing authority, and the message
itself come with a separate Cert signed by that authority?

Thanks,
Jess


On Thu, 2003-06-05 at 10:23, Rishel,Wes wrote:
> What is the benefit of sending the cert with the message? If you truly want 
> to authenticate the originator you have to acquire the cert by independent, 
> trusted means, don't you?
> 
> -----Original Message-----
> From: owner-ietf-ediint@xxxxxxxxxxxx
> [mailto:owner-ietf-ediint@xxxxxxxxxxxx]On Behalf Of Jess Sightler
> Sent: Thursday, June 05, 2003 6:36 AM
> To: lstoeckle@xxxxxxxxxxxxxxxx
> Cc: ietf-ediint@xxxxxxxxxxxxxxxx
> Subject: Re: AS2-SMIME : has the certificate to be included inside
> thesignatu re?
> 
> 
> 
> I can't speak 100% from the spec on this, but I know that iSoft makes
> sending the Certificate with a signature optional.
> 
> Based on that, I believe that it is an option to not send the cert.  I
> believe that sending the Cert would be a good practice, however.
> 
> Thanks,
> Jess
> 
> 
> On Thu, 2003-06-05 at 09:58, lstoeckle@xxxxxxxxxxxxxxxx wrote:
> > Hello,
> > 
> >  
> > 
> > I am new on this list - and I need your help.
> > 
> >  
> > 
> > AS2: when sending a signed message (the original message which can
> > also be signed, or a signed MDN), has the signer's certificate to be
> > included inside of the signature MIME part?
> > 
> > Is it mandatory or should AS2 compliant products accept both? (signed
> > messages containing the cert, or not containing it, in which case they
> > would try to find a certificate on the local key store etc.) 
> > 
> >  
> > 
> > Regards,
> > 
> > -----------------------------------------
> > Ludan STOECKLE
> > DSI Groupe Casino - Etudes
> > 
> > 04 77 45 48 01
> > 
> > lstoeckle@xxxxxxxxxxxxxxxx
> > -----------------------------------------
> > 
> > 
> >  
> > 
> > 
> >  
-- 
=======================================
Jess Sightler
Senior Developer
Exim Technologies
131 Falls Street
Greenville SC 29601
Phone: 864-679-4651
=======================================
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: AS2-SMIME : has the certificate to be included inside thesignatu re?, Rishel,Wes
Next by Date:  RE: AS2-SMIME : has the certificate to be included inside the signature?, Dale Moberg
Previous by Thread:  RE: AS2-SMIME : has the certificate to be included inside thesignatu re?, Rishel,Wes
Next by Thread:  RE: AS2-SMIME : has the certificate to be included inside thesignatu re?, Paul V Ford-Hutchinson
Indexes:  [Date] [Thread] [Top] [All Lists]

    ^^^ ADDITIONAL NAVIGATION ^^^

  
Google Custom Search

Recently Viewed:
yellowdog.gener...    python.sqlalche...    culture.studies...    ietf.tsvwg/2002...    java.mule.devel...    netbsd.ports.dr...    user-groups.lin...    gnu.core-utils....    kde.users.multi...    qnx.openqnx.dev...    systems.archos....    text.xml.xtm.tm...    mail.qpsmtpd/20...    audio.csound.de...    linux.jpackage....    freebsd.chat/20...    drivers.eepro10...    org.user-groups...    xfree86.newbie/...    hardware.microc...    editors.tex.tex...    voip.wengophone...    web.eprints.dev...    boot-loaders.gr...   
Home | blog view, Court Document Archive | USPTO Patent Archive (NEW!) | advertise | OSDir is an inevitable website. super tiny logo