[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Private key possession

To: Peter Williams <peter@xxxxxxxxxxxx>
Subject: Re: Private key possession
From: Denis Pinkas <D.Pinkas@xxxxxxxxxxxx>
Date: Thu, 20 Feb 1997 14:22:55 -0800
Cc: "David P. Kemp" <dpkemp@xxxxxxxxxxxxxx>, ietf-pkix@xxxxxxxxxx
Organization: Bull
References: <>
Reply-to: D.Pinkas@xxxxxxxxxxxx

Peter Williams wrote:

> >Their document introduces the notion of a certificate counter-signed by
> >the user. In such an architecture a certificate holds two signatures:
> >one from the CA and another one from the user. In this way the user
> >endorses the fact that the CA has issued the certificate. This is a
> >proof that the user not only knows the private key but also accepts the
> >certificate.
> 
> Are you claiming this is a messaging proof/non-repudiation of acceptance,
> service?

No.

> generalised it would say, if I send you a signed message, containing
> your public key bound to some datum, and you countersign that msg, this is
> a mechanism for proof of acceptance of datum, if a validator can find
> a public key value in the (next) inner-signed component which validates the
> outer signature. 


"proof of acceptance of datum" which looks like non repudiation of
acceptance of datum could not be provided by the mechanism you describe.
You are on a different thread here which is far away from the origional
topic that was discussed.


Denis

-- 

      Denis Pinkas     Bull S.A.         E-mail : D.Pinkas@frcl.bull.fr
      Rue Jean Jaures  B.P. 68            Phone : 33 - 1 30 80 34 87
      78340 Les Clayes sous Bois. FRANCE   Fax  : 33 - 1 30 80 33 21

References:
- Re: Private key possession
  - From: Peter Williams

Prev by Date: Re: Private key possession
Next by Date: Re: Private key possession
Previous by thread: Re: Private key possession
Next by thread: Re: Private key possession
Index(es):
- Date
- Thread