Dennis,
On 05/06/10 00:48, Dennis E. Hamilton wrote:
> Patrick, the only proposal I would make is that the current signatures always happen before any encryption, whether or not the signature is encrypted (and it should be if there is any encryption). That's with regard to the current state of affairs. There would be no signing after encryption using the package-embedded ODF 1.2 digital signatures.
I've explained in my other mail why signing after encryption is
reasonable. I definitively want to keep that option, which works well in
practice. But I would have no objection to add the possibility to
encrypt documents after signing them if you provide a use case and
proposal for this.
Actually, I've tried to address this already by the clarification I've
made in OFFICE-2656, which says:
If a digital signature file is not encrypted, consumers shall not
decrypt files that are referenced by