On Fri, Jan 8, 2016 at 11:39 AM, Florian Schmaus <f...@geekplace.eu> wrote: > > Please have a look on what I already wrote about this topic. I believe > that every OpenPGP API should provide you with a mechanism to determine > if a OpenPGP message contains signed and/or encrypted data. > Implementations then would typically use this information, verify if the > correct OpenPGP content element is used and if the other requirements > are met, and expose this information to the upper layers.
I don't think any API can tell you in advance that the encrypted message is signed inside. Though, probably exposing this information isn't a good idea, and you're right about the generic <openpgp/> element as a container. Cheers! -- Sergei Golovan _______________________________________________ Standards mailing list Info: http://mail.jabber.org/mailman/listinfo/standards Unsubscribe: standards-unsubscr...@xmpp.org _______________________________________________
