|
Developer
Downloads
Tutorial
Licensing
Mac
OS X
Success Stories
|
|
Digital XML
e-signature,
Public Key Certificates.
|
To verify a Digital XML e-signature,
the verifier must have access to the signer's public key and have
assurance that it corresponds to the
signer's
private key. However, a public and private key pair has no intrinsic
association with any person; it is simply a pair of numbers. Some
convincing strategy is necessary to reliably associate a particular
person or entity to the key pair, Digital XML e-signature.
Digital XML
e-signature,
relatively secure
"out-of-band" channel such as a courier or a secure voice telephone.
|
In a Digital XML e-signature
transaction involving only two parties, each party can simply
communicate the public key of the key pair each party will use. Such an
identification
strategy is no small task, especially when the parties are
geographically distant from each other, normally conduct communication
over a convenient but insecure channel such as the Internet, are not
natural persons but rather corporations or similar artificial entities,
and act through agents whose authority must be ascertained. As
Digital XML e-signature increasingly moves from a bilateral setting
to the many on many architecture of the World Wide Web on the Internet,
where significant transactions will occur among strangers who have no
prior contractual relationship and will never deal with each other
again, the problem of authentication/non-repudiation becomes not merely
one of efficiency, but also of reliability. An
open system of
communication such as the Internet needs a system of Digital XML
e-signature identity authentication to handle this scenario.
|
|
