[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: e-Government uses "Authority-stamp-signatures"

To: "Jimi Thompson" <jimit@xxxxxxxxxxxxx>
Subject: RE: e-Government uses "Authority-stamp-signatures"
From: lynn.wheeler@xxxxxxxxxxxxx
Date: Sat, 14 Dec 2002 08:05:02 -0700
Cc: "Anders Rundgren" <anders.rundgren@xxxxxxxxx>, ietf-pkix@xxxxxxx
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Sender: owner-ietf-pkix@xxxxxxxxxxxx


past discussion of non-repudiation .... a non-repudiation "service"
basically can demonstrate participation of the two end points in a
particular message. that makes such a service somewhat independent of the
content and/or processes involved in the message .... however for
non-repudiation (as opposed to the service) ... there is also electronic
signature as well as intention (aka the content of the message as well as
the actual electronic signature process).

for a legal signature ... as in manual signature, there is concept of
intention ... i.e. demonstrate that person intended to sign what they
signed. it is easier to show that when a person writes thier signature,
they intended to write their signature.

issue in technology with digital signatures ... a piece of computer
equipment may have been programed to apply signatures to messages, aka just
because the technology has been labeled digital signature doesn't make it a
digital equivalent of signatures.

somewhat taxonomy

* hash can demonstrate integrity of transmitted message
* signed hash (i.e. digital signature) can demonstrate origin and integrity
of the hash combined with the integrity of the message
* there is still the missing transition from demonstrating origin to
demonstrating intention (like demonstrating that the technology was never
used for purely integrity/origin ... or if it was, there is demonstratable
distinction)
* finally service that demonstrates that origin & destination actually
participated

abbreviatied random refs (in this mailing list):
http://www.garlic.com/~lynn/aadsm11.htm#5 Meaning of Non-repudiation
http://www.garlic.com/~lynn/aadsm11.htm#6 Meaning of Non-repudiation
http://www.garlic.com/~lynn/aadsm11.htm#7 Meaning of Non-repudiation
http://www.garlic.com/~lynn/aadsm11.htm#9 Meaning of Non-repudiation
http://www.garlic.com/~lynn/aadsm11.htm#11 Meaning of Non-repudiation
http://www.garlic.com/~lynn/aadsm11.htm#13 Words, Books, and Key Usage
http://www.garlic.com/~lynn/aadsm11.htm#14 Meaning of Non-repudiation
http://www.garlic.com/~lynn/aadsm11.htm#15 Meaning of Non-repudiation
http://www.garlic.com/~lynn/aadsm11.htm#23 Proxy PKI. Was: IBM alternative
to PKI?



jimt@xxxxxxxxxxxxx on 12/13/2002 10:19 pm wrote:

In order to establish non-repudiation, won't you need the signature of a
person and not just proof that the email passed through a specific server?

Follow-Ups:
- RE: e-Government uses "Authority-stamp-signatures"
  - From: Jimi Thompson

Prev by Date: Re: e-Government uses "Authority-stamp-signatures"
Next by Date: RE: e-Government uses "Authority-stamp-signatures"
Previous by thread: Re: e-Government uses "Authority-stamp-signatures"
Next by thread: RE: e-Government uses "Authority-stamp-signatures"
Index(es):
- Date
- Thread