Simon:
Thanks! I prefer *.p7s for CMS.
I looked over the rest of the document, and it seems fine.
It would be useful to add to the security considerations that the
Secretariat SHOULD/MUST be careful to have correct time on their
machines. Otherwise the Signing-Time attribute is not particularly
useful, as RFC 3852 doesn't require correctness of the value in that
attribute.
Good suggestion. Will do.
Was allowing end-to-end signatures considered? That would allow people
to be certain that the draft they retrieve from the IETF actually is the
same that was submitted to the IETF.
Yes, I thought about it, but I do not want to require authors to have
certificates.
Russ