Hi,
A Company-specific signature is definitely acceptable. I guess, Nagraj's
question related to signing on behalf of another individual ---- and, this
had security implications.
Regards.
Rahul
----- Original Message -----
From: "William Ottaway"
<w(_dot_)ottaway(_at_)eris(_dot_)dera(_dot_)gov(_dot_)uk>
To: "Nagaraj Mandya" <nmandya(_at_)yahoo(_dot_)co(_dot_)in>;
<ietf-smime(_at_)imc(_dot_)org>
Sent: Wednesday, July 18, 2001 01:40 PM
Subject: RE: Signing on behalf of somebody else
Hi Nagaraj,
Have you looked at the DOMSEC draft?
http://www.ietf.org/internet-drafts/draft-ietf-smime-domsec-08.txt
It allows for others to sign a message. It also specifies a domain/company
signature. A valid company signature means the message can be accepted
irrespective of whether there is an originator signature or not.
Bill.
-----Original Message-----
From: owner-ietf-smime(_at_)mail(_dot_)imc(_dot_)org
[mailto:owner-ietf-smime(_at_)mail(_dot_)imc(_dot_)org]On Behalf Of Nagaraj
Mandya
Sent: 18 July 2001 05:13
To: ietf-smime(_at_)imc(_dot_)org
Subject: Signing on behalf of somebody else
Hi,
Is it possible for a mail being sent by one person
be signed by a different person and still be treated
as a valid signature?
My problem is like this. Any mail that a client
receives signed by a particular person's certificate
should be considered valid by the client irrespective
of who the actual sender is.
Thanks.
--
Regards,
Nagaraj
____________________________________________________________
Do You Yahoo!?
For regular News updates go to http://in.news.yahoo.com