Re: Stab in the dark

Dave Raggett (dsr@hplb.hpl.hp.com)
Fri, 18 Mar 1994 19:33:07 --100


> I'm worried a bit about authority in these URN resolution schemes;
> you'd like the URN to be secure (in that someone couldn't spoof
> urn:/us/government/whitehouse/speeches/clinton/9-10-93/a and supplant
> it with some other document).

Surely, you can include the md5 signature of the document as a parameter
tacked onto the URN, using ";" as a separator as Dan suggested. This way
is safe if the document including the URN is trusted. The actual ownership
of the document can be checked provided it includes a public key signature
and related issuer certificates.

Best wishes,

Dave Raggett,

-----------------------------------------------------------------------------
Hewlett Packard Laboratories, +44 272 228046
Bristol, England dsr@hplb.hpl.hp.com