W3C home > Mailing lists > Public > w3c-xml-sig-ws@w3.org > April 1999

what does a signature mean ? (standard vocabulary)

From: Martin Lee <m.lee@andtech.co.uk>
Date: Mon, 19 Apr 1999 16:46:48 +0100
Message-ID: <01BE8A84.3878A760@MARTINS.andtech.co.uk>
To: "'XML-sig group'" <w3c-xml-sig-ws@w3.org>
I missed the subtlety, others will misunderstand too unless its made
clear in the specification.

Singing a document, or part of a document means different things to
different people, from I've seen it, to I believe this to be true, to I legally
commit myself to this transaction.

I propose that a set of standard vocabulary be suggested, to be included
as an attribute to the digital signature.

The default being (jn the absence of any other assertion):
The keyholder has 'touched' or 'received' the signed data.

Then in ascending order of commitment:
The keyholder has read the signed data.
The keyholder has read and agrees with the signed data.
The keyholder believes the signed data to be correct.
The keyholder believes the signed data to be correct and to be legally bound by it.

The first three should cover creating audit trails of who has received/seen a document.
The forth expresses what I wish to say in signing metadata describing documents.
The fifth I hope to come close to what the e-commerce people need to assert in thier
documents.

What do people think?

Martin

Martin Lee
AND Data Ltd.
Oxford 
UK
Received on Monday, 19 April 1999 11:47:42 EDT

This archive was generated by hypermail pre-2.1.9 : Wednesday, 24 September 2003 11:28:03 EDT