Digital Signatures and Electronic Documents: A Cautionary Tale

Autor:	R. Asokan, Sean W. Smith, K. Kain
Rok vydání:	2002
Předmět:	World Wide Web Workflow Digital signature business.industry Computer science Electronic document Sign (semiotics) Public key infrastructure Construct (python library) E-commerce Space (commercial competition) business
Zdroj:	Advanced Communications and Multimedia Security ISBN: 9781475744057 Communications and Multimedia Security
DOI:	10.1007/978-0-387-35612-9_22
Popis:	Often, the main motivation for using PKI in business environments is to streamline workflow, by enabling humans to digitally sign electronic documents, instead of manually signing paper ones. However, this application fails if adversaries can construct electronic documents whose viewed contents can change in useful ways, without invalidating the digital signature. In this paper, we examine the space of such attacks, and describe how many popular electronic document formats and PKI packages permit them.
Databáze:	OpenAIRE
Externí odkaz:	https://explore.openaire.eu/search/publication?articleId=doi_________::7a78f188d4f91f860a960a0bbf7a843a https://doi.org/10.1007/978-0-387-35612-9_22 Zobrazit plný text záznamu