Peter Gutmann wrote:
Isn't this a rather obscure implementation-specific issue? If you start
trying to enumerate every possible corner case of this kind in the spec, I
suspect you'd get a rather large, and never-quite-finished, document. Even
then, how do you handle the situation where the private key is in a smart card
that's not presently inserted in the machine, or it's CC'd to the sender's
other email address at a location where they have the private key, or ...
I can buy that. How about a BCP? Is there a BCP for S/MIME?
Description: S/MIME Cryptographic Signature
smime mailing list