Digital Signature Security
December 4, 2006
Trust decisions are everywhere. This perception marked the beginning of the Digital Signature Initiative’s (DSig) work. Users want to make sure that the code they just downloaded does not mess with their machine - they want to know if they can trust the author of the program. Users want to verify the authenticity of an online price list before placing an order - they want to know if they can trust the contents of the document. The purpose of DSig is to help users to decide what information they can trust on the Web. One part of DSig allows the author of a (Web) document to make assertions about the document and to cryptographically protect these assertions by digital signatures. The other part of DSig, the Trust Management Architecture (TMA) described in this document, helps the recipient of a document to make a decision about how to treat this document based on the assertions, the trust relationship with sender of the document, and other parameters. Expressing trust is a complicated issue. Users need to –
· State their security policies, including for which operations they trust whom
· Make use of machine-readable assertions, which may or may not be signed
· Have tools to automate parts of the decision making process.
To know more please click - http://www.beanarchitect.com/dssa.html
Article Courtesy: www.beanarchitect.com
Entry Filed under: Blogroll. .
1 Comment Add your own
Leave a Comment
Some HTML allowed:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>
Trackback this post | Subscribe to the comments via RSS Feed
1.
Mr WordPress | December 4, 2006 at 12:17 pm
Hi, this is a comment.
To delete a comment, just log in, and view the posts’ comments, there you will have the option to edit or delete them.