Isn't it time to move from signing in a totally insecure software environment (as are most PCs in the world)?
CEN/ISSS signature CWAs have been listed in the Offical Journal as officially recognised specifications - but they relate to signing with smart cards (and there IS work being done on secure terminal devices to handle both the online transaction and the hashing before signing with the smart card). Peter ----- Original Message ----- From: "Anders Rundgren" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, October 30, 2003 9:43 PM Subject: [Muscle] On-line signature standards > Dear muscle user, > > Here is some information related to muscle development gathered > from a poll made to the IETF-PKIX, IETF-SMIME, and the OASIS > PKI-TC lists regarding the current state of on-line signature standards > > ===================================================== > There are apparently no standards and nothing in the works either > with respect to signing on-line data on the web using Internet browsers. > ===================================================== <snip> _______________________________________________ Muscle mailing list [EMAIL PROTECTED] http://lists.musclecard.com/mailman/listinfo/muscle
