Re: MOSS question

        The only place there is a plethora of options (and I have taken
        these as being options for the user to choose rather than the
        implementor; and so have implemented all of them) are the eight
        possible ways to identify yourself as the sender of a signed
        message. Some of these (especially involving arbirtary strings)
        seem to offer the possibility of signed messages that whose
        origin cannot be authenticated. However, a good user agent will
        point out to the user the implications of any particular
        signature
         - this is from A(_dot_)Young(_at_)cs(_dot_)ucl(_dot_)ac(_dot_)uk and I 
trust it because...
         - this claims to be from 
A(_dot_)Young(_at_)cs(_dot_)ucl(_dot_)ac(_dot_)uk but I can't verify
              that [without such-and-such further information]
         - I ain't got no clue who this one is from
        and if this is done properly there should be no problem.

Agreed!

Jim

<Prev in Thread]	Current Thread	[Next in Thread>
MOSS question, Adrienne Snyder Re: MOSS question, Jeff Cook Re: MOSS question, Mark S Feldman Re: MOSS question, James M Galvin Re[2]: MOSS question, Paul Rarey Re: MOSS question, spock Re: MOSS question, Jeff Cook Re: MOSS question, Andrew Young Re: MOSS question, James M Galvin <= Re[2]: MOSS question, kurt Re: Re[2]: MOSS question, Andrew Young Re: Re[2]: MOSS question, Rich Salz Re[3]: MOSS question, Paul Rarey Re: MOSS question, Dave Crocker Re[2]: MOSS question, spock Re: Re[2]: MOSS question, Ned Freed Re: Re[2]: MOSS question, Jueneman Re: Re[2]: MOSS question, Donald E. Eastlake 3rd Re: Re[2]: MOSS question, Ned Freed

Previous by Date:	Re: Re[2]: MOSS conformance testing, Ned Freed
Next by Date:	Re: MOSS question, James M Galvin
Previous by Thread:	Re: MOSS question, Andrew Young
Next by Thread:	Re[2]: MOSS question, kurt
Indexes:	[Date] [Thread] [Top] [All Lists]