Al Arsenault wrote:
Actually, the sender can't control anything about the time the recipient
receives the message. All he can do is verify that the recipient's
certificate is not revoked at the time the message is sent, as the sender
perceives the time.
Agreed. That's why what would really be desirable [1] cannot be done and
it's an additional problem when sending encrypted email. The same does not
happen with signed email, because the message is usually considered valid if
the cert was valid at the time the message was signed.
Cheers,
Ed Gerck
[1] Ed Gerck wrote:
in order to send encrypted email to many people you need each recipient's
cert (and you also want to make sure they are not revoked at the time they
>> receive the message, which is yet another problem).