ietf-smime
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

CMS: signed attributes?

1998-03-23 11:04:39
from [David P. Kemp] [Permanent Link] 

I suggest that the CMS SignerInfo fields "authenticatedAttributes" and
"unauthenticatedAttributes" be renamed to "signedAttributes" and
"unsignedAttributes" respectively.

There are two justifications for this request, one trivial and one
substantive:

* Trivial reason: "signed" is easier to type than "authenticated",
  and it sounds pretentious to use five syllables when one will do.

* Real reason: signing is a mechanical process - attributes are either
  covered by a digital signature or not.  Authentication is a process
  involving policies and procedures - an attribute is not "authenticated"
  unless the signature (including the cert path) verifies correctly and
  the certificate policies allow the use of the attribute.  It is incorrect
  to call an attribute authenticated solely because it is signed, just
  as it is incorrect to call a certificate "valid" because it is signed.
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Inclusion of the issuer and serial number in authenticated information, David P. Kemp
Next by Date:  New draft of CMS, Paul Hoffman / IMC
Previous by Thread:  S/MIME Freeware Library Announcement, John Pawling
Next by Thread:  Re: CMS: signed attributes?, Russ Housley
Indexes:  [Date] [Thread] [Top] [All Lists]