Purpose of Triple Wrapping Not all messages need to be triple wrapped. Triple wrapping is used when a message must be signed@ then encrypted@ and then have signed attributes bound to the encrypted body. Outer attributes may be added or removed by the message originator or intermediate agents@ and may be signed by intermediate agents or the final recipient. The inside signature is used for content integrity@ non-repudiation with proof of origin@ and binding attributes (such as a security label) to the original content. These attributes go from the originator to the recipient@ regardless of the number of intermediate entities such as mail list agents that process the message. The signed attributes can be used for access control to the inner body. Requests for signed receipts by the originator are carried in the inside signature as well. The encrypted body provides confidentiality@ including confidentiality of the attributes that are carried in the inside signature. The outside signature provides authentication and integrity for information that is processed hop-by-hop@ where each hop is an intermediate entity such as a mail list agent. The outer signature binds attributes (such as a security label) to the encrypted body. These attributes can be used for access control and routing decisions.
RFC 2634-1999由IETF - Internet Engineering Task Force 发布于 1999-06-01,并于 2012-07-04 实施。
非常抱歉,我们暂时无法提供预览,您可以试试: 免费下载 RFC 2634-1999 前三页,或者稍后再访问。
点击下载后,生成下载文件时间比较长,请耐心等待......
Copyright ©2007-2022 ANTPEDIA, All Rights Reserved
京ICP备07018254号 京公网安备1101085018 电信与信息服务业务经营许可证:京ICP证110310号