Encrypt & Sign
David Shaw
dshaw at jabberwocky.com
Fri Jan 14 20:10:01 CET 2005
On Fri, Jan 14, 2005 at 11:19:38PM +0530, Vishal Rao wrote:
> On Fri, 14 Jan 2005 11:25:59 -0500, David Shaw <dshaw at jabberwocky.com> wrote:
> > The reason is that by doing sign & encrypt (that is, sign a document
> > and then encrypt the signed document) you protect the identity of the
> > signer. There is no particular reason why one is better than the
> > other, but generally people like the identity protection aspect of
> > S&E.
>
> Also, is there a legal significance of signing clear data rather than
> encrypted data? (Signer clearly knows what he signed) With OpenPGP or
> PKI?
Maybe, maybe not. It depends on what you can persuade the legal
system where it happened what the significance of it should be ;)
David
More information about the Gnupg-users
mailing list