Re: MIME-PEM Interaction Comments

Russ,

Thanks for the comment.  There's more work to do before the spec is
completely ready to become an RFC, so we'll add words to that effect.
It's certainly the intent that when someone wants to sign and encrypt
a message, they should sign it first and then encrypt it.

That said, it's not completely obvious to me that signing an encrypted
object is *always* useless.  I think there are some plausible, albeit
infrequent, scenarios in which I might want to forward something that
happens to be encrypted.  This is particularly true if the encrypted
object was encrypted by someone else and I want to forward it with my
signature protection.  

Steve

<Prev in Thread]	Current Thread	[Next in Thread>
MIME-PEM Interaction Comments, Russ_Housley . McLean_CSD Re: MIME-PEM Interaction Comments, Stephen D Crocker <= Re: MIME-PEM Interaction Comments, p . churchyard Re: MIME-PEM Interaction Comments, jueneman%wotan

Previous by Date:	MIME-PEM Interaction Comments, Russ_Housley . McLean_CSD
Next by Date:	Re: Nov IETF PEM WG agenda, Stephen D Crocker
Previous by Thread:	MIME-PEM Interaction Comments, Russ_Housley . McLean_CSD
Next by Thread:	Re: MIME-PEM Interaction Comments, p . churchyard
Indexes:	[Date] [Thread] [Top] [All Lists]