W3C home > Mailing lists > Public > public-webappsec@w3.org > February 2016

Re: Using client certificates for signing

From: Mitar <mmitar@gmail.com>
Date: Mon, 22 Feb 2016 21:42:31 -0800
Message-ID: <CAKLmikMyLe4sf7L9_foWChQ4pcbh6WHBKpuWnv=48vmZakVLcg@mail.gmail.com>
To: Martin Thomson <martin.thomson@gmail.com>
Cc: "public-webappsec@w3.org" <public-webappsec@w3.org>

On Mon, Feb 22, 2016 at 4:24 PM, Martin Thomson
<martin.thomson@gmail.com> wrote:
> You don't *need* a certificate to sign.  WebCrypto is enough.

You do. Because your certificate is signed by the state CA. And this
makes your digital signature legally equivalent to the normal
signature for almost any purpose. At least some countries in Europe
have such laws.


Received on Tuesday, 23 February 2016 05:43:00 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:54:54 UTC