[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: I-D ACTION:draft-ietf-smime-cms-auth-enveloped-03.txt

To: housley@xxxxxxxxxxxx, ietf@xxxxxxxxxxxxxxxxx, pgut001@xxxxxxxxxxxxxxxxx
Subject: RE: I-D ACTION:draft-ietf-smime-cms-auth-enveloped-03.txt
From: pgut001@xxxxxxxxxxxxxxxxx (Peter Gutmann)
Date: Thu, 26 Apr 2007 08:54:32 +1200
Cc: ietf-smime@xxxxxxx
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-smime/mail-archive/>
List-id: <ietf-smime.imc.org>
List-unsubscribe: <mailto:ietf-smime-request@imc.org?body=unsubscribe>
Sender: owner-ietf-smime@xxxxxxxxxxxx

"Jim Schaad" <ietf@xxxxxxxxxxxxxxxxx> writes:

>I am having a problem seeing why having the attributes first causes a
>problem for algorithms that want them second.  All that is needed is that
>the encryption wrapper for the code understand that the attributes are going
>to come in first and hold onto them until later.  This is assuming that the
>encryption wrapper understands the difference between the body and the
>attributes.

What if the attributes depend on the data being processed (as Peter Sylvester
pointed out)?  By putting them first, you can't emit the first byte of data
until you've processed every other byte of data.  This is why current CMS
practice puts the attributes last.

Peter.

Follow-Ups:
- RE: I-D ACTION:draft-ietf-smime-cms-auth-enveloped-03.txt
  - From: Jim Schaad

References:
- RE: I-D ACTION:draft-ietf-smime-cms-auth-enveloped-03.txt
  - From: Jim Schaad

Prev by Date: SMIME signature failures
Next by Date: RE: I-D ACTION:draft-ietf-smime-cms-auth-enveloped-03.txt
Previous by thread: RE: I-D ACTION:draft-ietf-smime-cms-auth-enveloped-03.txt
Next by thread: RE: I-D ACTION:draft-ietf-smime-cms-auth-enveloped-03.txt
Index(es):
- Date
- Thread