ietf-smime
[Top] [All Lists]

RE: Forwarding of signedData objects

1999-08-24 15:27:50
Scott,

If the signer of the forwarded (i.e. inner) signedData includes a
receiptRequest attribute that includes the receiptsFrom allOrFirstTier set
to allReceipts, then every entity that verifies the signature of the
signerInfo containing the receiptRequest is supposed to return a signed
receipt (unless superseded by a Mail List Receipt Policy as noted below).
Note that the signer may have designated that only specified recipients
(ReceiptsFrom receiptList CHOICE) or first-tier recipients (receiptsFrom
allOrFirstTier set to firstTierRecipients) should return a signed receipt.  

As stated in RFC 2634, Section 2.3, the presence of an mlExpansionHistory
attribute in the outermost signedData can supersede the receiptRequest in
the inner signedData.  If the last mlData element in the mlExpanisonHistory
attribute includes a mlReceiptPolicy value of NONE, "then the receipt policy
of the Mail List supersedes the originator's request for a signed receipt
and a signed receipt MUST NOT be created."

============================================
John Pawling, Director - Systems Engineering
J.G. Van Dyke & Associates, Inc.,
a Wang Government Services Company
jsp(_at_)jgvandyke(_dot_)com
============================================ 

<Prev in Thread] Current Thread [Next in Thread>