[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Signing the hash of the signer's certficate

To: <ietf-pkix@xxxxxxx>
Subject: Signing the hash of the signer's certficate
From: "Anders Rundgren" <anders.rundgren@xxxxxxxxx>
Date: Wed, 10 Mar 2004 16:02:54 +0100
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Sender: owner-ietf-pkix@xxxxxxxxxxxx

It seems that neither CMS nor XML Dsig explicitly
support signing the hash of the signer's certificate.

But this has been added to ETSI's XAdES.

I understand that the reason for this addition was to thwart
changing the client certificate.

However, there must be a considerable difficulty
finding a client certificate with an identical public key
(and a provable possession of a matching private key),
which is required in order to succeed with this attack.

Any thoughts about this?

Anders R

Follow-Ups:
- Re: Signing the hash of the signer's certficate
  - From: Denis Pinkas
- Re: Signing the hash of the signer's certficate
  - From: Jean-Marc Desperrier

Prev by Date: Launch of the Security Plugtests Registration
Next by Date: Re: Signing the hash of the signer's certficate
Previous by thread: Launch of the Security Plugtests Registration
Next by thread: Re: Signing the hash of the signer's certficate
Index(es):
- Date
- Thread