Curt wrote:
I concur. The problem is that the most prevalent e-mail
program (Outlook) requires no user intervention as a default
when signing and/or encrypting a message with S/MIME. One
can override the default to High Security (requiring
password) only while the X.509 certificate is
Mike wrote:
Thanks, that was very enlightening. The URL is good too -
they mention that An electronic signature is defined as being:
an electronic sound, symbol or process attached to or
logically associated with a contract or other record and
executed or adopted by a person
Smith
Sent: Wednesday, May 29, 2002 12:21 PM
To: [EMAIL PROTECTED]
Subject: CDR: Re: When encryption is also authentication...
I agree that the signer does not need to understand the
mathematics or underlying technology for digital signatures to
be viable. However, what good is an agreement when
Ian Grigg wrote:
[...]
SSL for commerce is readily in place without batting an eyelid these days.
Costs are still way too high. This won't change until
browsers are shipped that treat self-signed certs as being
valid. Unfortunately, browser manufacturers believe in
cert-ware for a
Mike Rosing [EMAIL PROTECTED] wrote:
Having it be transparent where the user doesn't need to know
anything about how it works does not have to destroy the
effectiveness of digital signatures or crypto. When people sign a
document they don't know all the ramifications because few bother to
I concur. The problem is that the most prevalent e-mail
program (Outlook) requires no user intervention as a default
when signing and/or encrypting a message with S/MIME. One can
override the default to High Security (requiring password)
only while the X.509 certificate is being installed.
I
SSL for commerce is readily in place without batting an eyelid these days.
Costs are still way too high. This won't change until
browsers are shipped that treat self-signed certs as being
valid. Unfortunately, browser manufacturers believe in
cert-ware for a variety of non-security reasons.
Mike Rosing [EMAIL PROTECTED] wrote:
Having it be transparent where the user doesn't need to know
anything about how it works does not have to destroy the
effectiveness of digital signatures or crypto. When people sign a
document they don't know all the ramifications because few bother to
Ian Grigg wrote:
[...]
SSL for commerce is readily in place without batting an eyelid these days.
Costs are still way too high. This won't change until
browsers are shipped that treat self-signed certs as being
valid. Unfortunately, browser manufacturers believe in
cert-ware for a
Mike Rosing wrote:
On Thu, 30 May 2002, cypherpunk_reader wrote:
If the end user insists on e-signing a document without having read it it is
there perogative,
but I think there should be a better system in place to insure that they
either read it or that
they did not read it but
Hi
However, I'd be interested to know just how many users out there
would enter their card details on an unprotected site, despite the
unclosed padlocks and the alert boxes.
( 02.05.30 08:34 -0400 ) Ian Grigg:
Huge numbers of them. You won't see it in security
lists, but most of your
I agree that under-the-hood encryption is becoming more and
more prevalent, and that it generally improves security. Also,
the widespread use of encryption technology helps protect
cryptorights in general as important to the public good.
The fundamental problem with under-the-hood is that the
Mike Rosing wrote:
If digital crypto, signatures or e-cash are going to get into mass appeal,
then their operations will be magic to the majority. And it all has to
work, to 1 part in 10^8th or better, without user comprehension.
It may well take user intervention to create a signature,
I agree that the signer does not need to understand the
mathematics or underlying technology for digital signatures to
be viable. However, what good is an agreement when the parties
do not know what the terms of the agreement are? A signature
(digital or otherwise) generally indicates that the
On Wed, 29 May 2002, Curt Smith wrote:
I agree that under-the-hood encryption is becoming more and
more prevalent, and that it generally improves security. Also,
the widespread use of encryption technology helps protect
cryptorights in general as important to the public good.
This is kinda
15 matches
Mail list logo
