[framework-issues] [Issue 60875] Certificate key usage is n ot handled by the OpenOffice programs when sig n a document digitaly
To comment on the following update, log in, then open the issue: http://www.openoffice.org/issues/show_bug.cgi?id=60875 --- Additional comments from [EMAIL PROTECTED] Wed Nov 12 09:01:28 + 2008 --- I agree that we should follow some standards here. If I remember correctly, the German Signature Act requires the use of the right key usage as well. Your #1 scenario could maybe apply for the case when OOo establishes a https connection and the server requires a client authentication. However, I am not sure if this is possible at all with OOo. - Please do not reply to this automatically generated notification from Issue Tracker. Please log onto the website and enter your comments. http://qa.openoffice.org/issue_handling/project_issues.html#notification - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[framework-issues] [Issue 60875] Certificate key usage is n ot handled by the OpenOffice programs when sig n a document digitaly
To comment on the following update, log in, then open the issue: http://www.openoffice.org/issues/show_bug.cgi?id=60875 --- Additional comments from [EMAIL PROTECTED] Wed Nov 12 14:51:29 + 2008 --- Yes, jl, you have right. I simply detailed the knowledge behind the separation of the certificates. - Please do not reply to this automatically generated notification from Issue Tracker. Please log onto the website and enter your comments. http://qa.openoffice.org/issue_handling/project_issues.html#notification - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[framework-issues] [Issue 60875] Certificate key usage is n ot handled by the OpenOffice programs when sig n a document digitaly
To comment on the following update, log in, then open the issue: http://www.openoffice.org/issues/show_bug.cgi?id=60875 --- Additional comments from [EMAIL PROTECTED] Tue Nov 11 15:45:38 + 2008 --- This issue will probably be retargeted. In my opinion the current implementation is barely usable for a couple of reasons. What we need are requirements of the form: The signature must comply with standard A in order to be legally accepted in country B. Because this is actually a huge task, i suggest that signature components may be developed by individual parties and OOo is improved to better integrate these components. Have a look at my OOo 2008 conference presentation: http://marketing.openoffice.org/ooocon2008/programme/friday_1419.odp - Please do not reply to this automatically generated notification from Issue Tracker. Please log onto the website and enter your comments. http://qa.openoffice.org/issue_handling/project_issues.html#notification - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[framework-issues] [Issue 60875] Certificate key usage is n ot handled by the OpenOffice programs when sig n a document digitaly
To comment on the following update, log in, then open the issue: http://www.openoffice.org/issues/show_bug.cgi?id=60875 --- Additional comments from [EMAIL PROTECTED] Tue Nov 11 16:28:06 + 2008 --- My opinion, to filter out the signer certificates with Key Enchipherment Key Usage. The separation of the encryption(EC), authentication(DS), and signing(NR) function came from a security problem. Please imagine it: case 1: You have a certificate with DS, NR, EC. You want to login on a webpage, and the server drops some random data to sign it. You sign it, then the server check the signature, and logins you, when it is correct. But if the server drops some patched data, not random, the server owner will have a signed document, which is signed with a certificate, where the allowed purposes includes non repudation (NR), so your random data was SIGNED for them. case 2: You have EC with NR bits. You can have an application, which simply sign with your encription certificate, of course, this is not a way, yo want, but you sign something, with a law acceptable certificate. case 3: You sing something with a EC certificate You signed it, because you want to make it an official document. But when you will use it, on the judge, you will found, oops, no really signeture on it. So you lost on the judge. - Please do not reply to this automatically generated notification from Issue Tracker. Please log onto the website and enter your comments. http://qa.openoffice.org/issue_handling/project_issues.html#notification - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[framework-issues] [Issue 60875] Certificate key usage is n ot handled by the OpenOffice programs when sig n a document digitaly
To comment on the following update, log in, then open the issue: http://www.openoffice.org/issues/show_bug.cgi?id=60875 --- Additional comments from [EMAIL PROTECTED] Mon Nov 10 16:22:47 + 2008 --- Tested on OO 3 and still not working. Retargeting to OO4??? :) - Please do not reply to this automatically generated notification from Issue Tracker. Please log onto the website and enter your comments. http://qa.openoffice.org/issue_handling/project_issues.html#notification - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[framework-issues] [Issue 60875] Certificate key usage is n ot handled by the OpenOffice programs when sig n a document digitaly
To comment on the following update, log in, then open the issue: http://www.openoffice.org/issues/show_bug.cgi?id=60875 User jl changed the following: What|Old value |New value Target milestone|OOo 2.x |OOo 3.x --- Additional comments from [EMAIL PROTECTED] Fri Dec 7 16:01:02 + 2007 --- Retargeting to 3.x - Please do not reply to this automatically generated notification from Issue Tracker. Please log onto the website and enter your comments. http://qa.openoffice.org/issue_handling/project_issues.html#notification - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
