On 4/25/2002 3:07 PM, "David Shaw" <dshaw(_at_)jabberwocky(_dot_)com> wrote:
RFC-1991 defined sigclass 0x40 as a timestamp, and went on to further
explain its intended use ("Type <40> is intended to be a signature of
a signature, as a notary seal on a signed document.")
When RFC-2440 came out, this extra explanation seems to have been
lost, as 2440 defines 0x40 only as a timestamp. A sigclass for a
signature on a signature would be very useful. Any chance to restore
this clarification in the next draft?
It wasn't so much that it was lost, but that it was actively removed.
Only the document and certification signatures were ever implemented before
2440 came out. At one time, we removed all the definitions to simplify. Then
they gradually crept back in. 0x40 became a timestamp because there were
people who wanted to use it.
I may be wrong on this, but would it be better to introduce a new type if
you want to do notaries? Or do this with a notation?
Jon