EU Draft Digital Signature Directive
Nicholas Bohm
nbohm at ernest.net
Sat, 22 Aug 1998 11:42:35 +0100
At 09:49 PM 8/21/1998 +0100, David Swarbrick wrote:
>In message <199808201737_MC2-56BA-741E@compuserve.com>, Nigel Hickson
><nigelhickson@compuserve.com> writes
>>Colleagues
>>
>>Just to confirm (in light of Mr Swarbrick's posting) that legal recognition
>>will NOT depend on a CA being licensed but only on meeting standards (or by
>>convincing the judge in other ways).
>>
>I welcome this liberating approach. I almost daredn't ask, but is this
>the change I think it is to accord with the EU proposal?
More crucially, why should recognition depend on a signature being
certified by a third party at all? If you know me, and I give you my
public key in person, and you rely on my signature made with the
corresponding private key, why should recognition of that signature be
denied merely because no third party certified it?
Regards,
Nicholas
Salkyns, Great Canfield,
Takeley, Bishop's Stortford CM22 6SX, UK
Phone 01279 870285 (+44 1279 870285)
Fax 01279 870215 (+44 1279 870215)
Mobile 0860 636749 (+44 860 636749)
PGP RSA 1024 bit public key ID: 0x08340015. Fingerprint:
9E 15 FB 2A 54 96 24 37 98 A2 E0 D1 34 13 48 07
PGP DSS/DH 1024/3072 public key ID: 0x899DD7FF. Fingerprint:
5248 1320 B42E 84FC 1E8B A9E6 0912 AE66 899D D7FF