Re: Proposed Up/Down protocol description

To: Geoff Huston <gih@apnic.net>
Subject: Re: Proposed Up/Down protocol description
From: Robert Loomans <robertl@apnic.net>
Date: Wed, 23 May 2007 17:05:19 +1000
Cc: Randy Bush <randy@psg.com>, Resource Cert List <rescert@apnic.net>
In-reply-to: <7.0.0.16.2.20070523161712.06110048@apnic.net>
Openpgp: id=C6B3AE7E; url=http://robert.loomans.org/0xC6B3AE7E.asc
Organization: APNIC - http://www.apnic.net/
References: <7.0.0.16.2.20070516122258.07116810@apnic.net> <20070517225346.BA1DA22826@thrintun.hactrn.net> <7.0.0.16.2.20070518165228.014415b8@apnic.net> <20070518175247.9CCFF22826@thrintun.hactrn.net> <AC9A3E81-D0BB-4B18-8C40-015875E46084@apnic.net> <4651AABA.9020804@psg.com> <7.0.0.16.2.20070522114938.029556a0@apnic.net> <46526323.1010509@psg.com> <7.0.0.16.2.20070523161712.06110048@apnic.net>
User-agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X; en-US; rv:1.8.0.9) Gecko/20061207 Thunderbird/1.5.0.9 Mnenhy/0.7.4.666

> BUT if the Signing Time attribute of the CMS wrapper is NOT protected by
> the CMS digital signature then my assumption is _not_ valid (!)
> 
> ***Does anyone want to confirm that the digital signature of CMS covers
> the Signing Time attribute?

In RFC 3852, section 11.3:

   The signing-time attribute MUST be a signed attribute or an
   authenticated attribute; it MUST NOT be an unsigned attribute,
   unauthenticated attribute, or unprotected attribute.



-- 
Robert Loomans                                 Email:  robertl@apnic.net
Programmer/Analyst, APNIC                      Phone:    +61 7 3858 3100
http://www.apnic.net                             Fax:    +61 7 3858 3199

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

Follow-Ups:
- Re: Proposed Up/Down protocol description
  - From: Geoff Huston <gih@apnic.net>

References:
- Proposed Up/Down protocol description
  - From: Geoff Huston <gih@apnic.net>
- Re: Proposed Up/Down protocol description
  - From: Rob Austein <sra@hactrn.net>
- Re: Proposed Up/Down protocol description
  - From: Geoff Huston <gih@apnic.net>
- Re: Proposed Up/Down protocol description
  - From: Rob Austein <sra@hactrn.net>
- Re: Proposed Up/Down protocol description
  - From: Byron Ellacott <bje@apnic.net>
- Re: Proposed Up/Down protocol description
  - From: Randy Bush <randy@psg.com>
- Re: Proposed Up/Down protocol description
  - From: Geoff Huston <gih@apnic.net>
- Re: Proposed Up/Down protocol description
  - From: Randy Bush <randy@psg.com>
- Re: Proposed Up/Down protocol description
  - From: Geoff Huston <gih@apnic.net>

Prev by Date: Re: chicago
Next by Date: Re: transfers doco - and an alternative approach
Previous by thread: Re: Proposed Up/Down protocol description
Next by thread: Re: Proposed Up/Down protocol description
Index(es):
- Date
- Thread