FWIW, I have implemented a prototype in which a server only accepts entries with valid digital signatures. The server used those signatures to verify the integrity of the payload but did not attempt to preserve the signature. That said, however, you are definitely right about it being too early to specify the Right Thing To Do.
- James Tim Bray wrote: > [snip] > Unfortunately, nobody has ever implemented anything like this that I > know of, and I don't even know of any applications that need it, so > it''s *way* too early to try to specify The Right Thing To Do. > [snip]
