Re: Signatures and Authentication information must go at end of meesage. from Ned Freed on 1996-02-08 (ietf-http-wg@w3.org from January to March 1996)

From: Ned Freed <NED@innosoft.com>
Date: Wed, 07 Feb 1996 17:37:19 -0800 (PST)
To: hallam@w3.org
Cc: http-wg%cuckoo.hpl.hp.com@hplb.hpl.hp.com, hallam@w3.org
Message-Id: <01I0XUVHCW3I9N3WDF@INNOSOFT.COM>

> I am trying to produce a spec for signatures and authentication info in HTTP
> messages. There are two options:

> 1) Produce something broken which some people will like on artistic grounds
> 2) Find a way of attacking the signatures to the _end_ of the message.

Why not simply use the mechanism that has already been standardized for
this purpose: RFC1847?

				Ned

Received on Wednesday, 7 February 1996 17:41:54 UTC