[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Security hole

To: "Brian M. Thomas" <bt0008@xxxxxxxxxxxxxxx>
Subject: Re: Security hole
From: Borka Jerman-Blazic <borka@xxxxxxxxx>
Date: Mon, 09 Dec 1996 10:46:24 +0100
Cc: borka@xxxxxxxxx, Lars.Johansson@xxxxxxxxxxxxxx, w3c-dsig@xxxxxx, ietf-pkix@xxxxxxxxxx, wg-i18n@xxxxxxxxx
In-reply-to: Your message of "Fri, 06 Dec 1996 09:55:39 CST." <>

> I think we're talking about two different issues here: character sets
> and fonts.  The character set and its interpretation are one thing, and
> their interpretation is a matter of standard.  The font issue is another,
> however, and unless a signature covered the font data completely, the
> defense that your signature covered something different from what you
> saw is without support.

 Sorry, but fonts are images of a characters in particular 
character set. Yhey are a part of so called character - glyph maping.
But, I see your point, if you download the font as we do
with Power Pont presentations then you can somehow guarntee 
safeness.
> 

> 
> As I think I made clear above, this really is about malicious code, in
> the fonts that are downloaded with the form to be signed.  It's
> probably a very good idea to specify the entire content of a form, as
> displayed, that you fill out and sign, just as when you sign a paper
> document "as displayed", since proof of material modification of the
> document after your signature can void it.
> 

The only problem I am seeing here is before you see what the
other party is offering (displaying) you must download the appropriate font 
in order to see what you are going to sign. If it is so simple then
this should be added in the standard.


Regards,


Borka

References:
- Re: Security hole
  - From: Brian M. Thomas

Prev by Date: new PKIX-1 Draft...
Next by Date: The Meaning of Hold
Previous by thread: Re: Security hole
Next by thread: Re: FW: Security hole
Index(es):
- Date
- Thread