[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: three digital signature models ... for x9.59
from the continuum perspective ... i would consider that we
are in violent agreement. it may be some of the
perspective of the details that we differ. Also presenting
different models/points on the continuum sometimes
helps with the understanding. I didn't want to preclude
any other models/points on the continuum ... but just
present the x9.59 account-based position with a little
perspective.
in some circles various aspects of account-based signature
verification might have appeared as a centralized model;
however the distinction is that the various account-based
financial transaction actually occurs at the account-authority.
rather than performing superfluous/redundant verifications
outside the account-authority ... signature verification is
integrated into the account-authority's standard transaction
processing.
in the retail word ... merchants don't actually verify any
information for account-based transaction (checks, credit/debit
cards) ... they just verify that various types of information exist
and/or conforms to some criteria (since it is difficult in the physical
world
for the account-authority to be everywhere at once).
In the digital signature online world ... it becomes feasible
for an account-authority responsible for a financial transaction
to perform both the signature registration as well as the signature
verification ... since that is where the transaction actually
takes place and the ultimate liability resides.
The credit-card world did have offline "CRL-like" booklets in the
60s which had scaleup and timeliness deficiencies ... but finally
went to online verifications. It is centralized in the sense that
requests are sent to the account-authority ... it is distributed
in the sense that there are a large number of different account-authorities
and there is a large network supporting account-authority
interconnect.