OASIS ebXML Messaging Services TC

 View Only

[ebxml-msg] Sign and Encrypt

  • 1.  [ebxml-msg] Sign and Encrypt

    Posted 10-26-2001 19:04
    I am looking through the spec and I don't see anywhere that says which to do first, Sign or Encrypt. All security protocols of which I am aware always sign first and then encrypt. This may be obvious but I would like to add a note to this effect in section 4.1.4.5. Note: When both signature and encryption are required, sign first and then encrypt. Regards, David Fischer Drummond Group.