On Wed, 04 Oct 1995 11:52:41 EDT, you said:
thanks Valdis.
multipart/signed
messages/externalbody,access-type=ftp,....
application/signature,....
can you expand it a bit for me?
I want to send an encrypted message to fred, and require that, during
decryption/mime processing, fred's conformant UA *must* perform a
message/external-body operation using the "client-authenticating x-ftps"
access
type, say.
are we saying the technology can do this?
Foo.. make that a multipart/encrypted. Then it all falls out - you can't
do the decryption till you fetch the actual body part. And when they fetch
the body part, you have non-repudiation of delivery via your FTP logfiles. ;)
Something that is sorely needed is an RFC draft for new external body parts -
in particular, for SSL-secured HTTP connections and the like.. Or did I miss
a draft someplace?
However, this still doesn't help the case where the person refuses to
even try to decrypt it. But then, there isn't much you can do if I refuse
to take stuff out of my postal mailbox either, short of sending a process
server over to my office to tap me on the shoulder and hand me the papers. ;)
/Valdis