Digital signatures and electronic documents: a cautionary tale

@inproceedings{Kain2002DigitalSA,
  title={Digital signatures and electronic documents: a cautionary tale},
  author={K. Kain and Sean W. Smith and R. Asokan},
  booktitle={Communications and Multimedia Security},
  year={2002}
}
Often, the main motivation for using PKI in business environments is to streamline workflow, by enabling humans to digitally sign electronic documents, instead of manually signing paper ones. However, this application fails if adversaries can construct electronic documents whose viewed contents can change in useful ways, without invalidating the digital signature. In this paper, we examine the space of such attacks, and describe how many popular electronic document formats and PKI packages… CONTINUE READING
Highly Cited
This paper has 31 citations. REVIEW CITATIONS

From This Paper

Figures, tables, and topics from this paper.

References

Publications referenced by this paper.
Showing 1-8 of 8 references

Distributing Word Documents with a locating beacon.

  • R. M. Smith
  • SecuriTeam. August
  • 2000
2 Excerpts

Context-Sensitive Verification of the Validity of Digital Signatures.

  • U. Pordesch, A. Berger
  • Multilateral Security for Global Communication…
  • 1999
1 Excerpt

Web Spoofing: An Internet Con Game.

  • E. Felten, D. Balfanz, D. Dean, D. Wallach
  • 20th National Information Systems Security…
  • 1996
1 Excerpt

“ Digital Signature Regulation and European Trends

  • A. Rossnagel.
  • DuD — Datenschutz und Datensicherheit . 2 /

Similar Papers

Loading similar papers…