Re: [office] Digital Signature proposal - Duane Nickull - org.oasis-open.lists.office

31 messages in org.oasis-open.lists.officeRe: [office] Digital Signature proposal

From	Sent On	Attachments
Jomar Silva	Jul 11, 2008 9:59 am
Bob Jolliffe	Jul 12, 2008 7:09 am
robe...@us.ibm.com	Jul 13, 2008 12:12 pm
Duane Nickull	Jul 13, 2008 12:35 pm
Bob Jolliffe	Jul 27, 2008 1:27 pm
Ming Fei Jia	Jul 30, 2008 4:02 am	.gif, .gif, .gif, 8 more
Bob Jolliffe	Jul 30, 2008 4:52 am
Jomar Silva	Jul 30, 2008 9:01 am
Duane Nickull	Jul 30, 2008 9:13 am
Dave Pawson	Jul 30, 2008 9:40 am
Duane Nickull	Jul 30, 2008 9:51 am
Dave Pawson	Jul 30, 2008 10:28 am
Duane Nickull	Jul 30, 2008 10:49 am
Ming Fei Jia	Jul 31, 2008 9:17 am	.gif, .gif, .gif, 13 more
Dave Pawson	Jul 31, 2008 9:56 am
Jomar Silva	Jul 31, 2008 10:32 am
Bob Jolliffe	Jul 31, 2008 10:42 am
Dave Pawson	Jul 31, 2008 11:41 am
Duane Nickull	Jul 31, 2008 11:47 am
robe...@us.ibm.com	Jul 31, 2008 2:43 pm
Duane Nickull	Jul 31, 2008 2:54 pm
Jomar Silva	Jul 31, 2008 3:15 pm
Duane Nickull	Jul 31, 2008 3:32 pm
Ming Fei Jia	Jul 31, 2008 10:53 pm	.gif, .gif, .gif, 6 more
Dee Schur	Aug 1, 2008 7:05 am
Michael Brauer - Sun Germany - ham02 - Hamburg	Aug 8, 2008 5:57 am
Michael Brauer - Sun Germany - ham02 - Hamburg	Aug 8, 2008 6:06 am
Dave Pawson	Aug 8, 2008 6:11 am
Bob Jolliffe	Aug 8, 2008 7:06 am
Michael Brauer - Sun Germany - ham02 - Hamburg	Aug 11, 2008 4:49 am
Bob Jolliffe	Aug 12, 2008 12:57 am

Subject:	Re: [office] Digital Signature proposal
From:	Duane Nickull (dnic...@adobe.com)
Date:	Jul 30, 2008 9:51:21 am
List:	org.oasis-open.lists.office

Dave:

The PDF archive format can preserve a block of bytes representing the original document plus the signature dictionary which contains information about the hashing algorithm, the key and signature values in a manner that they can be preserved and tested in the future. The exact mechanism is very complex and includes callback to test as the file is being written out to disk to ensure no tampering occurred between the time it was signed and the persistence to disk as well as other safeguards.

The PDF itself could be signed again thus making two certification events per document. Multiple signatures on a document have extra complexity as you first have to certify documents. It basically works on a function v(function v(function v()))... Basis. The second signature or certification event includes the bytes used by the first set of signatures.

Based on currently acceptable algorithms and historic CPU breakthroughs, I would suspect that what people use today for Dsig is not what will be acceptable tomorrow for things like certifying documents.

I have a set of PDF slides on the PDF signature mechanism if anyone wants to understand this in more detail.

Duane

On 30/07/08 9:41 AM, "Dave Pawson" <dave...@gmail.com> wrote:

2008/7/30 Duane Nickull <dnic...@adobe.com>:

On this topic, has anyone on this TC covered cross-standard workflows to determine requirements? A typical request is to take an ODF doc and archive it in PDF format. Ensuring the dSig info can be archived in a format that it will still be capable of being authenticated 50 years from now is a hot topic with lots of governments.

Highly unlikely. The signature is based on a specific instance (say the content.xml file in office). Why should we expect it to survive a transform into PDF, back out of it, then remain valid?

The ODF and PDF instances are different documents. Hence the signature should be invalidated IMO

regards

	Start a set with this search
	Include this search in one of my sets
	Exclude this search from one of my sets