Best practice for periodic key change?
Jerome Baum
jerome at jeromebaum.com
Sun May 8 03:13:00 CEST 2011
On Sat, May 7, 2011 at 23:56, Robert J. Hansen <rjh at sixdemonbag.org> wrote:
> On 05/07/2011 02:49 PM, MFPA wrote:
> > What is to stop that scanned bitmap of a person's signature being
> > applied to a document the individual has no knowledge about?
>
> Nothing. That's the nature of physical signatures.
I was talking about a digital signature though.
MFPA: I agree about the signature being very weak. I am just repeating what
German law says. This is from some brochure brought out by the BSI. It's
also quite a right interpretation -- they aren't assigning much strength to
it, it's what we have advanced and qualified electronic signatures for. The
bitmap scan is still digital though, and it is a signature. So, it is an
electronic signature. Makes sense, just don't accept it in court.
--
Jerome Baum
tel +49-1578-8434336
email jerome at jeromebaum.com
--
PGP: A0E4 B2D4 94E6 20EE 85BA E45B 63E4 2BD8 C58C 753A
PGP: 2C23 EBFF DF1A 840D 2351 F5F5 F25B A03F 2152 36DA
-------------- next part --------------
An HTML attachment was scrubbed...
URL: </pipermail/attachments/20110508/fa29acfc/attachment.htm>
More information about the Gnupg-users
mailing list