Problem with faked-system-time option
expires2011 at ymail.com
Tue Jun 14 21:25:06 CEST 2011
-----BEGIN PGP SIGNED MESSAGE-----
On Tuesday 14 June 2011 at 12:33:08 AM, in
<mid:201106140133.09131.mailinglisten at hauke-laging.de>, Hauke Laging
> You should tell apart who has to prove something. Your
> argument is valid if the signer has to prove that he
> has made the signature at (or before or after) a
> certain date and time. His own signature is no proof in
> that case as he can easily fake the timestamp.
> If a third party has to prove that and when the signer
> has signed a document then the signature timestamp is
> perfectly OK.
Suppose the party who originated the document to be signed
subsequently presents (possibly faked) evidence showing the document
to have been prepared later than the signature timestamp. The signer
is now unexpectedly in the position of having to prove something.
MFPA mailto:expires2011 at ymail.com
There is no snooze button for a cat that wants breakfast
-----BEGIN PGP SIGNATURE-----
-----END PGP SIGNATURE-----
More information about the Gnupg-users