BTW: Karl, long ago I also provided this eIDAS topic to various sources for discussing and cracking, when it came to faking things and neither people on the GnuPG ML, Bruce Schneier's blog, Usenet's sci.crypt and social media sites, showed me from experts in the field of Cryptography a crack of an eIDAS certified .pdf document digital signature, while I know from the past that vulnerabilities exited in other non-eIDAS signature schemes, for .pdfs So if the Open Source community would focus on specs and vulnerabilities I and I guess lot's of others would appreciate it. Someone somehow has to start things, which are already popular among Governments, businesses and should see if it fits for average people too, while not trusting snakeoil marketeers and their "solutions", if you understand what I mean. If I had not seen an advantage as option for cryptographic applications, used in combination with eIDAS, I had not dived into this eIDAS topic. Motto should be here 'take the best of both worlds' and privacy costs money even if Punk and others would hate me more for that. Regars Stefan ---------- Original Message ---------- On Sat, February 19, 2022 at 11:33 PM, Stefan Claas<stefan@ctemplar.com> wrote: Business folks etc. can use standalone local WIN/MAC software for verification and there is also a Linux GUI app available for verification, but I forgot the name and it gave an error due to no proper implementation. So it is up to the Open Source community to get involved into eIDAS, figuring out the specs and test a bit. Regards Stefan ---------- Original Message ---------- On Sat, February 19, 2022 at 11:28 PM, Stefan Claas wrote: You're welcome, have you actually downloaded my certificate, not the blockchain proofs, and uploaded it to the link: https://ec.europa.eu/cefdigital/DSS/webapp-demo/validation and looked at the various tabs, once uploaded? If yes, would you agree that for an offical EU demo site, this gives you plenty of infos, one can study, compared to a simple 'Good Signature', from good old PGP or an S/MIME MUA implementation? Regards Stefan -- claas.su ---------- Original Message ---------- On Sat, February 19, 2022 at 7:20 PM, k wrote: On 2/19/22, Stefan Claas wrote:
Thanks,
I wanted to present a way for people within the EU to have an option to phase out the old and non reliable and non trustworthy WoT, which can't, as you know, not been used for businesses, contracts etc.
It's great you guys are mainstreaming cryptography. I hope it is true. It was too helter-skelter when WoT was phasing away for me to understand any good reason for it to happen. Both our countries were targeted by a psyop business during that.
The blockchain stuff I did only mostly for Americans, because they like NFTs and stuff like that.
Most americans are govcorp sheep like my psychosis wants me to be, just like in other countries.
Please feel free to forge the certificate or blockchain proofs so that we can brainstorm about better ways to secure certain things digitally.
I visited the website but didn't see a quick-and-easy-to-find avenue for independent verification, such as a concise merkle tree spec. Anyway it comes down to trusting the private company attesting to you either way, since they propose using their website to check. Hopefully they offer something better than SSL to do that via.