-----BEGIN PGP SIGNED MESSAGE-----
In
<199711141534(_dot_)HAA13867(_at_)s20(_dot_)term1(_dot_)sb(_dot_)rain(_dot_)org>,
on 11/14/97
at 10:34 AM, Hal Finney <hal(_at_)rain(_dot_)org> said:
I am considering doing sign-and-encrypt by clearsigning and then
encrypting the clearsigned message. This way you just decrypt and are
left with a nice clearsigned message, which you can then verify.
This is the default behavior for my PGP implementations.
In addition to the sig block being retained for future reference after
decryption you have the implementation of sign and forward systems where
you would wish to retain multiple signatures.
Take the following example:
Message X needs to be distributed and signed off by several people:
Originator of X signs the message and encrypts it to user 1.
User 1 decrypts the messages and then parallel signs the message. He then
encrypts it to user 2.
This process continues until the originator receives the message with all
the signatures from the distribution list.
- --
- ---------------------------------------------------------------
William H. Geiger III http://users.invweb.net/~whgiii
Geiger Consulting Cooking With Warp 4.0
Author of E-Secure - PGP Front End for MR/2 Ice
PGP & MR/2 the only way for secure e-mail.
OS/2 PGP 2.6.3a at: http://users.invweb.net/~whgiii/pgpmr2.html
- ---------------------------------------------------------------
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3a
Charset: cp850
Comment: Registered_User_E-Secure_v1.1b1_ES000000
iQCVAwUBNGyXMI9Co1n+aLhhAQHaWwP8CRA6Dd0ZUvga1Nvr3iqqyKcWsZde9XiH
xcBHkaILw2wNVK9mJXeMcHxeNZ1SmAc/yoQLJQyRnNGGeFnTn0G2W13qAC94r1Mt
r53duppFkcWOZmYiO8STMpO255tte/stEyhgcHUEyC68XDQXafWyGdQ4PBbN76/C
ywIfa2Q0m0g=
=7aQJ
-----END PGP SIGNATURE-----