[354] in cryptography@c2.net mail archive
Re: Digital Signatures without PKCS
daemon@ATHENA.MIT.EDU (Perry E. Metzger)
Sat Mar 15 20:14:17 1997
To: "P. J. Ponder" <ponder@freenet.tlh.fl.us>
cc: cryptography@c2.net
In-reply-to: Your message of "Sat, 15 Mar 1997 00:20:57 EST."
<Pine.OSF.3.95.970314232852.20401C-100000@fn3.freenet.tlh.fl.us>
Reply-To: perry@piermont.com
Date: Sat, 15 Mar 1997 18:15:42 -0500
From: "Perry E. Metzger" <perry@piermont.com>
"P. J. Ponder" writes:
> This definition excludes signatures and possibly other authentication
> technologies based on secret key methods.
[...]
> Should the legal definition of 'digital signature' be limited to methods
> based on public key cryptography?
I'm not big on secret key based "signature" methods given that they
are easy to forge. Keyed hashes are useful for authentication in
limited circumstances, but make me leery on documents.
Perry
