USPS Providing Electronic Postmarks

isn't my name writes "Back in 2000, Clinton signed the ESIGN Legislation which set forth the requirements for making electronic signatures. But many questioned the weakness of its definitions that allowed an e-mail address to be used as an electronic signature. Well, it seems the USPS has come up with something stronger. They even have a Java and MS COM SDK's Apparently, the USPS feels that the strong legal protections against interfering with the US mail will apply to the EPM program. It seems that AuthentiDate is doing all the heavy lifting. According to the whitepaper on their site, it provides non-repudiation and legal timestamps of documentation by having the customer use a public-key to sign a hash of the document, which is then sent to AuthentiDate's servers which combine that with a timestamp and sign with their key. So, AuthentiDate does not have access to any of the data in the documentation. It sounds very similar to the free PGP Digital Timestamping Service, but it likely is more likely to be legally defensible in a US Court. They also have a new plug-in for MS Word documents. Interestingly, despite the mention of the SDK and it's ability to work with any documents, the only login setup I could find just allows you to use the MS Word version."

Something Similiar

[Dark+Paladin]

I've been working on something similiar for another division of the US government.

The biggest thing driving this are two issues:

1. Government Paperwork Eliminiation Act - signed by Clinton, it basically tells the various agencies:
1. "reduce paperwork by having forms available online".
2. "When possible, have those forms electronically signed."

The problem is that most government agencies, except maybe the IRS, and then in limited form, really don't have any kind of system set up for doing #2. They're getting pretty good at #1 (having documents available online), but #2 has been a challenge.

The biggest challenge is initial setup. For the Department of Agriculture, you can do electronic signatures over the web. But first you must physically show up at one of their offices, validate your identify, and then you're good to go.

That works all right for them, but suppose you're somebody like the IRS, with around, oh, 200 million "clients". Now you have to process them all, validate their identity which means having them show up at a local office (long lines and all). Then there's the issue of what system to use, validation procedures, how to keep Joe American from forgetting their password, and if they lose it, how do they get it back in a way that's secure and doesn't cost a lot of money?

2. Money. Believe it or not, most people in government agencies really want to save money, not spend all of it.

Honest.

So by having electronic signatures, they can reduce paperwork, install workflow systems so that when a document is digitally signed it can be forwarded right to the people who need to see it to be reviewed in minutes instead of days, without all the messy paper getting lost and so on.

I'll probably be checking out the USPS's system to see what they do. If it's reasonable, secure, ensures privacy, and truly has an open API that would allow other agencies to develop systems based on it, it may be the electronic signature "standard" that some government agencies are looking for.

Guess I'd better RTFA now ;).

Re:Something Similiar

[mukund]

Why does the USPS in this case have to authenticate each and every individual? It seems to be a timestamping service, which means they sign our documents' message digests. Doesn't this mean we have to authenticate the USPS (say as a stored trusted certificate in client software)? They don't need to care about the identity of each an every individual if they only want to say such a document existed at such a time and we verified it.

Re:Something Similiar

[mukund]

I am sorry. It may be that the USPS is also verifying the identity of the "customer" who is getting the document signed.

Re:Something Similiar

[Rosco+P.+Coltrane]

somebody like the IRS, with around, oh, 200 million "clients". Now you have to process them all, validate their identity

They've already given keys to everybody : it's called the SSN. [sarcasm]Surely if it's a valid enough proof of identity for banks, it's usable as a digital signature by the IRS. Right? Right?[/sarcasm]

Re:Something Similiar

[chefbb]

After perusing the white paper, it looks like the USPS solved this issue by having the user apply online for a digital certificate. Then they print out a form and authenticate themselves at a local post office, then they can download their DC. It's interesting that the post office is probably one of the few federal agencies capable of making this work, due to their presence in every community.

The obvious breakdown with this is that someone could potentially gain access to a user's computer and steal their dc. What about Joe User who runs windows 98 and is unaware of his spyware? It's easily as secure as an old-fashioned signature, though. So maybe that's good enough.

I have to say that it does look like the USPS thought things through rather well on this one. They made it as easy as possible while still focusing on security.

Re:Something Similiar

" really don't have any kind of system set up for doing #2" I've got a system that does #2 just about every day...

Re:Something Similiar

[montypics]

That's because the USPS isn't a federal agency. They were privatized several years ago. They are federally regulated but not federally operated.

Re:Something Similiar

[BLAMM!]

2. Money. Believe it or not, most people in government agencies really want to save money, not spend all of it.

Honest.
I suppose I believe you, but even assuming it really is true, the efforts of those trying to save can be completely wiped out by the minimal efforts of those few that don't give a damn.

Re:Something Similiar

[DAldredge]

Bull shit. A private org would have to pay gas tax and they would have to pay to have their vehicles registered.

The USPS does neither.

Re:Something Similiar

Except for that whole identity theft issue, which is a ever increasing problems around the states, sure there's no problems with tying all your private, personal, and confidential records to one 9 digit number.

Re:Something Similiar

[vaguelyamused]

Actually the Postal Service is not really privatized. The Postmaster General is still an appointed position, they do not pay taxes to local or federal governments nor abide by labor standards set forth for private companies. That said their budget is entirely seperate from the federal budget, they receive absolutely no tax money and are expected to be self-sufficient. Their employees are federal workers in the civil service system however and are entitled to all benefits as such.

The aren't allowed to keep all of their profits either though. In years they make too much money the federal government takes most of it for general revenue. Additionally the USPS has to comply with all kinds of draconian rules set by Congress (see Franking privileges).

So you see they aren't privatized, their leadership is federally appointed and the workers federal employees but the USPS is not completely integrated into the federal government (like..say..the Park Service).

Re:Something Similiar

[montypics]

You're right and wrong. Your right in that the USPS is indeed a government agency. I admit to my error and include this link to the history of the postal service. http://www.usps.com/history/his3.htm#REORG You're wrong, however that a private org pays taxes and vehicle registration. Take most local transit authorities. Or how about Meals on Wheels or the United Way. Many non-profit organizations are tax-exempt. How about your local (and now privatized, yet still regulated) utilities. I was mistaken when I thought the USPS fell into this category, but the category exists nevertheless.

Re:Something Similiar

[rw2]

2. Money. Believe it or not, most people in government agencies really want to save money, not spend all of it.

Honest.
I suppose I believe you, but even assuming it really is true, the efforts of those trying to save can be completely wiped out by the minimal efforts of those few that don't give a damn.

Just like in the private sector.

Unlike the private sector, at least in my experience, people in the public sector are there for reasons other than a large paycheck, so the signal to noise ratio is higher.

Re:Something Similiar

[DAldredge]

The post office is for profit.
UPS/FEDEX/Airborne/DHL/etc... ALL pay gas/vehicle reg taxes.

All for profit orgs that use roads pay taxes/reg fees. If you are a farmer you can get the tax back as credit if you fill out the correct paperwork.

Re:Something Similiar

What part of [sarcasm]...[/sarcasm] don't you understand?

Word only irrelevant

[Esteanil]

That it's word only ATM (as far as I also can find out from the site) is irrelevant... Well, nearly so. With the Java SDK any application from any OS appearently can easily be enhanced with their Electronic Postmark capabilities.
What I'm wondering about is the "Nationwide reach and trust" point they list in "Benefits of EPM".
Does the strong encryption make it illegal to use this for international communications?

Re:Word only irrelevant

[lwsimon]

Does the strong encryption make it illegal to use this for international communications

Good point, i'll research it and check back by tonight... Would be quite ironic if USPS was a "weapons exporter" via the downloads on its site :)

Re:Word only irrelevant

[mwood]

OMG, what if the Taliban got ahold of our dangerous strategic postmarking technology. The mind boggles.

USPS to protect my data?

[Rosco+P.+Coltrane]

The EPM is designed to deter and detect any fraudulent tampering or altering of electronic data.

Hell, they weren't even able to deliver the bubblewrapped hard-disk I sent in a triple-thickness FRAGILE-sticker-equipped box I overnighted to my business partner in one piece ...

Re:USPS to protect my data?

[Orion442]

Yeah, what he said. I just went through an "experience" with the post office after moving. The mail was addressed to my new address, but since nobody told the postman I was living there now, he held it (I guess at his home) and only delivered part of it and returned some AFTER I filed 3 complaints. I wouldn't trust them with a damn thing even if hell DID freeze over.
Fuck the USPS, fuck em.

Re:USPS to protect my data?

[mabhatter654]

That's what UPS or FedEX is for! Everybody knows you don't trust "fragile" stuff to the Post...they're too busy. Sure UPS costs a bit more, but you get what you pay for!!!

Re:USPS to protect my data?

UPS offers shitty service. I don't trust ANYTHING to them, much less fragile items!

I once ordered two computer cases (had to put together a new comp for the wife, too, heh), which were shipped via UPS. One of them arrived damaged; the second one never arrived.

Re:USPS to protect my data?

[Orion442]

Goddamnit, who gave the USPS mod points?!?!

Re:USPS to protect my data?

What I wouldn't do for mod points right now...I just spit coffee out my nose, you bastard.

The sooner they get this working the better...

[MrRTFM]

I am sick and tired of having to FAX my damn signature around the place

1. print the form
2. sign it
3. scan it
4. fax it

I mean, come on - how outdated is this method?
If the Banks let us use online banking to transfer all our money around, surely a digital signature system can be built.

But then, I am not an encryption expert so what do I know.

Re:The sooner they get this working the better...

[Rosco+P.+Coltrane]

This may help you:

1 - Open document in Gimp or PS
2 - Sign it with your mouse (tricky) or your graphic tablet (well worth the investment, if only for this application)
3 - print document to fax printer device

Re:The sooner they get this working the better...

[WARM3CH]

Or even better: just insert a previousely scanned photo of your signature. Or maybe it is not completely legal to not to actually use a real pen? ;)

Re:The sooner they get this working the better...

[AndroidCat]

I've always wondered what loony descided that faxing a signature was in any way secure. Possibly it was mildly secure when there were only fax machines and no computers with fax modems, scanners and editing software. (Although a literal cut'n'paste would still foil it back then.)

I've got a contract that I have "sign" with this idiotic method today. Joy, but they're paying me so... Has "fax signing" stood up to any real test in court?

As for this new method .. can't be worse.

Re:The sooner they get this working the better...

[Rosco+P.+Coltrane]

Or maybe it is not completely legal to not to actually use a real pen?

Do you think the guy who signs paycheck in big companies actually uses a pen? or the guy at CompUSA responsible for signing all those mail-in rebates checks ?

As for the guy who receives your fax, unless you slap a 5x5 GIF of your signature on the hi-def document, he'll be hard pressed to know it's not actually written then faxed.

Re:The sooner they get this working the better...

[will_die]

What I have done is just create a small image with my signature and then paste that in. If you have a scanner available, probably more common then a graphic tablet, then scan one in and use that.
Also this does point to one problem with accepting signatures, without a witness. It is far to easy for the person to claim it is a forgery. I have around 50 documents in various places and with various people that have the exact same signature; it would be extermly easy for me to claim that someone forged my signature and then use any of thoses documents as the original.

Re:The sooner they get this working the better...

[MrRTFM]

I've tried the mouse signing trick and it looked terrible.

and this is why I hate the current secure 'fax' method :
Anyone can scan my signature and save it as a JPG and have a field day signing forms.

Surely a secure website is a better validation method.

(Dont mind me - I've had a personal vendetta against fax verification since 1996)

Re:The sooner they get this working the better...

[Quixote]

2 - Sign it with your mouse (tricky) or your graphic tablet (well worth the investment, if only for this application)

Alternately, sign on a white sheet of paper, scan it and keep it (secure). Just paste this "signature" onto the document. Voila!

Re:The sooner they get this working the better...

[Rosco+P.+Coltrane]

(Dont mind me - I've had a personal vendetta against fax verification since 1996)

I'm with you right there.

Anyway, it doesn't matter much, because since everybody requires people to sign this or that, signatures aren't worth crap anymore. For example, I signed someone else's $1200 credit card slip once (my boss', he had used his credit card to stick me in a hotel for 1 month on a business trip, but left before me, so I signed it myself when I checked out) : I didn't know his signature, so I just used mine. Totally and obviously not his name at all. Neither the hotel nor his bank never said anything at all. They only check if the account holder complains.

Re:The sooner they get this working the better...

[sangreal66]

You're faxing it anyway so it will be printed on the other end regardless

Re:The sooner they get this working the better...

Quite outdated. My modern Facsimilotronix sends faxes without even scanning them.

Or you could just scan your signature once and photoshop it on to all your electronic documents. Just gpg the signature image file on your hard drive if it's a common area machine.

Re:The sooner they get this working the better...

[trentblase]

Faxing is still better than what a small merchant does when you place an order over the phone. They write "phone order" on the slip.

Re:The sooner they get this working the better...

I've signed my name on a boss's card, too. I'm pretty sure if the card is a business card, they assume that employees will use it for business expenses sometimes.

Re:The sooner they get this working the better...

Funny story: One time my boss got a call from his bank because the signature on a check he signed didn't match the signature on all the other checks they had. The reason? It was the first check he actually signed himself in several years.

Re:The sooner they get this working the better...

I had a boss once that claimed that for over eight years he had always signed restaurant credit cards slips with "Thank you very much" before anyone bothered to confront him about it. His penmanship was quite chicken scratchy, so that might have helped.

Set A Standard, Aid a Convicted Monopolist.

[ausoleil]

I find it troubling that a government that is supposedly FOR free and open competition in the marketplace decides to use a proprietary interface as a legal standard for electronic signatures. Surely there is a platform and application neutral solution that can be utilized not only by Micrsoft's office applications but also by those that choose to use other means -- be they Linux, Macintosh or other. For example, a significant number of law firms still use WordPerfect Office.

Of course, Microsoft Word is by and far away the market leader in word processing, as is their IE product. But also consider that Microsoft is a convicted monopolist and now comes the government to further propogate their disproportionate market share which was gained (as decided by the courts) by illegal means.

Makes you wonder, exactly whom does our government represent? This would appear to be another brick in the edifice of evidence that it is not us, the people, but instead, them the corporate interests.

Boo!

Re:Set A Standard, Aid a Convicted Monopolist.

[Nate+B.]

Well, duh.

When they say "any document" they mean documents created by any version of MS-Word (there is no other way to create documents, right?)...

Sheesh!

- Nate >>

P.S. If I had mod points I'd have un-modded the Troll modifier. Hopefully, I'll get to meta-mod this clown...

Re:Set A Standard, Aid a Convicted Monopolist.

Well, they have to start somewhere, don't they? MS Word is widely used in the US government, so it makes a great starting point to satisfy the largest customer first. As pointed out above, it's Java SDK, so it can be ported to darn near any other OS.

That's a lot of keys

[MadSweeper]

My only comment to this is that fact that for it to really work each person who uses it will need a (public) key. In order for that to work you need to validate the users' identity.
Does this mean that I will goto my local post office and sign-up, get I&A (Identification and Authentication) done and then get my key?
Are the keys real public keys ie: PKIX and PKCS standards?

Re:That's a lot of keys

[Dark+Paladin]

Most likely, yes. If they do it right, you should fill out a form online, get some sort of number or perhaps a barcode print out, take it to a USPS center where they will validate you with a picture ID (Drivers license), then give you access to your keys, perhaps through a username/password combination.

Why this way? Remember: lying to the post office is a Federal Offense, and can get you jail time. That's why they like the whole "make you show up" concept: it (should) keep people from being naughty, especially if they take the extra step and request a fingerprint or some other biometric that will scare the pants off of most would-be identity thieves.

Re:That's a lot of keys

[MadSweeper]

As you say: If they do it right
I have been dealing with PKI for 7 years now and still have not seen an implementation that would work on a large scale. It works in corporations where there aren't that many people.
I suppose we should look at how different Revenue Departments do it. I know that there are countries that allow its citizens to submit their tax returns across the internet. However, many of these system don't use a real PKI.

One of the questions that I have been strugling with is the usability of current PKI systems. Technology exists to do wonderful things (not just in PKI) but the general public is not able to, or does not want to, understand and/or use it.

Oh yeah, regarding Banks. They don't use it and they just put the burden on the customer by saying you are using this system at your own risk...

Re:That's a lot of keys

[*weasel]

Biometrics don't actually scare the pants off identity thieves.

Work for a bank some time, and note how casually and willingly people will be to put their fingerprint on a forged check. Not that you'll know when they try to pass it. Everything will be in order, everything will look right. They won't hesitate to hand you an ID and print.

Then you'll hand them the cash, and a week later the branch will be kicking itself.

maybe they realize that the fingerprint is useless (unless you have a criminal record, there's nothing they can compare it against, and they dont have the horsepower to perform a pre-transaction search through a national database).

maybe they're dumb.

who knows - but a biometric just doesn't bother them. It would however bother piles of citizen's groups, if the government were to start fingerprinting non criminals. well, that's how they'd spin it anyway. and maybe they'd have a point.

what was slashdot's philosophic argument against DRM anyway? treating all your paying customers as potential criminals is bad business?

Re:That's a lot of keys

[mwood]

"who knows - but a biometric just doesn't bother them. It would however bother piles of citizen's groups, if the government were to start fingerprinting non criminals."

"Start"? When I went to work for the USPS I had to give a complete set of prints as part of accepting the job. Dunno what they do with the cards -- I assumed they just filed it at NCIC with no adverse notations, but maybe the Postal Inspectors have their own prints repository.

Re:That's a lot of keys

[firewrought]

what was slashdot's philosophic argument against DRM anyway?

The philosophical reason: For me, the computer is an extension of my brain. Giving me information and presuming you can control exactly what I do with it is like mind control.

The theoretical reason: DRM is fundamentally flawed: information theory dictates that its just not possible to give someone information with them being able to copy it. To put it in lay terms: "God wants information to be free."

The business reason: Widespread DRM usage will have annoying and costly ramifications for the business world: if people start writing documents or spreadsheets (or access databases) that employ these features, IT departments will be hit doubly hard by the "end-user development problem".

There are more, but these are some of the big ones, as I see it. And I'm sure that many have a "monetary" reason as well, though that one is highly questionable. ;-)

Re:That's a lot of keys

[Conare]

I guess you didn't notice the recent GAO Report which tells us that the DoD PKI has issued over 9 million certificates. I am not saying it works well, but it does work on large scale. Frankly PKI really isn't cost effective for smaller companies either. It is the larger companies and governments that benefit the most in my opinion. Reason: initial setup costs can be high, unless you are willing to outsource your security, a decision that I personally frown on (but that is another discussion).

Another thing: EPM is probably not the best idea for providing a legal signature that is meant to last for the life of a long term legal document such as a 30 year lease, or a passport (10 years in the U.S.). The reason is that in 30 years the algorithms used to perform the digital signature will be easily defeated, thus making that signature easily forgeable. EPM's best use is as a certification that a document was sent by person X at time Y and that it hasn't changed since it was signed. This would also have value in financial transactions that are short lived in nature, but not with transactions that need verifiability over any long period of time.

The comparison to a postmark is a bit anomalous as someone else pointed out, because while a postmark does attest to a certain date and time of stamp cancellation, it does not assert the identity of the sender. It does attest to the originating location of the letter, which EPM does not do.

Lastly, I find the prospect of E.M.P. in the hands of postal workers to be a frightening prospect and...OH E-P-M....

Re:That's a lot of keys

The government has been fingerprinting lots of non-criminals for a long time. Military people, both full time and reservists. Certain local traffic tickets. Teachers, doctors, cops, child-care workers, food handlers, welfare recipients, just to name a few, and of course it depends on which government you are talking about.

Word Macros

Actually Word is not suitable for the purpose anyway. A word document may contain macros and scripting which change the way the content is rendered *after* it is signed.

So be very careful when you trust a digital signature on a word document, next week it may say something quite different...

Re:Word Macros

[Esteanil]

"only a hash code of the file is logged as evidence of authenticity." -About EPM

Tampering by a macro or script would change the file, thereby making it incompatible with the hash, no?

Timing issues

[kjdames]

I think depending on a regulated email system like this to prove legal timestamping is foolish. Any number of things can delay an email - would you send your taxes by email five minutes before they were due? If a late timestamp meant a fine?

Re:Timing issues

[Rosco+P.+Coltrane]

would you send your taxes by email five minutes before they were due? If a late timestamp meant a fine?

Simple: chose a USPS signature server located on the west coast ;-)

Re:Timing issues

[COLUG]

Uber procrastinators should try for a USPS signature server on Guam where America's day begins. :)

Re:Timing issues

[bonzomcgrue]

Guam would be a bad choice. It's on the other side of the International Date line, so it's already tomorrow there. Should procrastinators use the server you suggest, their taxes will be stamped one day later than they would be in the continental US.

On a related note, this is one of the most elegant apps on the Web.

I've been an April 15 filer the last five years. The Post Offices stay open late (at least the bigger ones do), and there's a long line of people and cars dropping off taxes at the last possible minute. It's usually a festive occasion-- ("Hey! We're all filing taxes at the last possible minute!"). It's like the way I've seen New Orleans funerals portrayed. Sad, but happy.

Is it really a postmark?

[manganese4]

Is calling the service a postmark truly correct in the traditional use of the postal serivce? This just looks like a Government sponsered notary service.

Now if we can get a true email version of registered mail where every server in the chain signs the message, that would be something useful

Re:Is it really a postmark?

[mabhatter654]

A notary is Govt sponsored too....just so you know. Actually, it makes lots of sense to have a certified email...If it registered and verified delivery to the server then it would be just like mail...remember meatspace mail is legal even if you don't take it from your mailbox...You're legally obligated to take it out and read it.

Re:Is it really a postmark?

Manganese

Re:Is it really a postmark?

[Skjellifetti]

A notary is Govt sponsored too....just so you know. Actually, it makes lots of sense to have a certified email...If it registered and verified delivery to the server then it would be just like mail..

Verifying delivery of email to a server isn't very meaningful if the server has spam filters that could potentially toss it. A real delivery verification process would require a user to digitally sign the return receipt.

remember meatspace mail is legal even if you don't take it from your mailbox...You're legally obligated to take it out and read it.

I doubt that. If this were truly the case, most of us would be in legal trouble given the amount of junk mail we toss every day.

Re:Is it really a postmark?

[mabhatter654]

You are correct...but the system right now certifies that YOU send marked docuement....and it can be verified for tapmering. Wether the other party gets is another story. But the first important part is that Your identity is verified...for things like business contracts, order forms, tax returns, and the like...there's tons of petty paperwork that's part of multi-step processes getting mailed and faxed simply because they need "offical signatures".

As far as mail, you are legally obligated to notices served by regular mail...of course not everything! But if somebody says they sent you something [and are sworn to a court or something] they are considered to have done so by law. I've seen family get offical court documents thru normal mail...there's even a spot for the clerk to sign that they gave offical notice by mail...for a matter of fact govt in general refuses to use certified mail in most cases...so yes, mail is a legal matter.

Digitally signed crap documents are still crap

[Rosco+P.+Coltrane]

it provides non-repudiation and legal timestamps of documentation

It gives a whole new meaning to the term "going postal" when you find out that authentic-looking digitally-signed Nigerian business proposition wasn't such a good deal after all ...

Registering your code..

[wfberg]

You know, using such a service to put a date on your sourcecode is a good idea in case you ever end up having to prove when you first coded it (or at least, had it in your possesion); for example, if you need to go after a company stealing your code (GPL non-compliance) or if a company comes after you (SCO?).

Re:Registering your code..

[dimitri_k]

You could also snail mail yourself a printout.

Re:Registering your code..

[mabhatter654]

Great idea! Because you could "mail" the code directly to a a third party secure server and have some legal backup. Best of all, with a service like this it's finally possible to have an fully automated system, just like a nightly tape backup.

OK...can I mail this post so this can't be patented out from under us?

Re:Registering your code..

[wfberg]

Great idea! Because you could "mail" the code directly to a a third party secure server and have some legal backup.

The timestamp only uses the hash -- which prevents your precious tradesecrets from leaking.

OK...can I mail this post so this can't be patented out from under us?

The PGP timestamping service is ample prior art for the timestamping of hashes. But some random geek is more likely to be doubted in court than the USPS (or a tech savvy notary public for that matter), which is why it's good they're getting in on this..

As for automatically backing up code.. CVS?

Re:Registering your code..

[mabhatter654]

I was getting at an escrow service that you emailed your code [or other IP] to. With something like this one could start a company accepting and archiving the "certified" emails... It could be a plug-in service to just do a "save to archive" function. The server company would simply host the "mailbox" and you would use normal email to send the contents...very slick and trouble free. You'd have your personal archive of emails, and the hosting company would have a copy...verified by post. The point I'm making is that it would require NO human interaction after the initial setup! It would be cheap enough for you or I normal people use it...heck, even sourceforge could add that as a feature!

What did you not get about "Java SDK" ?

[brunes69]

You think, that if this were in any way influenced by MS, there would be a Java SDK? MS hates Java.

Just because the first sample implementation is in Word, doesn't imply there is some conspiracy. The USPS probably uses Word internally and wanted to make the sample usefull for them. With the JavaSDK you could use this in Linux, FreeBSD, hell even embedded applications.

Take off your tinfoil hat.

Re:What did you not get about "Java SDK" ?

[provoix]

/* Presuming this is a response to the posting of MS Ad on USPS... If not...please ignore */

I'm not sure you understood the point. My concern was with the explicit advertising by a for-profit corp on a public/Gov't owned domain, regardless of the corp. (i.e. you and I are paying for a for-profit's advertising). I was literally asking (perhaps didn't make it clear enough) for some more informed person to help me understand.

I have no tinfoil hat's, they're all licensed by MS.

Zip Zop!!

Re:What did you not get about "Java SDK" ?

[brunes69]

The fact that a publicly funded organization uses something created by a private one means it is advertising?

Is congress advertising for Adobe because it has PDFs for download?

Is USPS advertising for Ford because it has it emblazened on the front of their trucks?

Answer: No, of course not, and you're only hemming and hawing because Microsoft is in the story somewhere. If the sample was using Ximian OpenOffice you wouldn't have said a word, even though it'd be "Advertising" for Ximian by your terms.

That's good, but...

[LynXmaN]

Now if USPS would get electronic efficiency, that would be quite a good new feature!!!!

So many links...

[Paul.Org]

10 links in one article - I like to keep up on stuff but that article had more links than a full day at FARK (and far less boobies)...

Re:So many links...

[WARM3CH]

10 links in one article

I've heard this is a new yet suspecious effort to stop the /. effect! By distributing the traffic over 10 links instead of just one... or would it turn back and we'll effectively slash-dot 10 times more? Well, yeah, all this with a tiny little assumption that somebody actually is going to read the articles ;)

Government waste

[nuggz]

Of course the USPS should sponsor a company to do this.
Much better then just working with the existing projects.

Re:Government waste

[kiwimate]

Or they could license the technology from a company who's got some experience in doing this. I don't know how long Silanis has been doing this, but I first came across their digital signature software in 2000, so they ought to know something about the thing. Their web site claims:

Compliance with federal and state legislation and industry regulations, including the ESIGN Act, UCC, UETA and the FDA's 21 CFR Part 11

Re:arghh.. Apostrophes!

you mean like in this phrase?

i-t-apostrophe-s slick i-t-s bits fit i-t-s kits.

Stupid grammar nazis ...

SDK ... Free?

[MisanthropicProggram]

I couldn't find any price quote for the SDK: just a contact. I'm assuming with the USPS' budget problems, that they'll charge for this.
Does anyone know if they're charging and how much?

Re:SDK ... Free?

[cmdr_beeftaco]

80 cents a pop! I am sorry but why does computing a hash code cost twice as much as coming to my house picking up and letter and driving 2000 miles to someone else door?

Too expensive

[kindofblue]

For what the timstamping service actually does, it costs way, way, way too much. It cost 80 cents per email, 10 cents in bulk. This is super trivial; it should cost 1 or 2 cents, and yahoo mail or hotmail could do it for free. I don't see what Authentidate offers, other than a countersignature with a private key, timeserver, and a hash.

And of course, there is a free PGP timestamping service, but unfortunately, that does not have the backing of the USPS.

Anyone know of something similar that is cheap?

Re:Too expensive

[chefbb]

Authentidate gives the hash/timestamp the creedence of a 3rd party witness. They keep track of your hash and assign your stamp. I agree that if the purpose was to simply timestamp or a signature, it would be overkill. For documents where proving "who, what and when" are absolutely necessary, you need an unbiased (i know, it's the gov't) 3rd party.

Re:Too expensive

[nameer]

Checking USPS, certified mail is $2.30+postage and registered mail is minimum $7.50+postage. $0.80 seems like a good deal compared. Remember, it's not what it costs to produce, it what the market is willing to pay.

Re:Too expensive

[Chibi]

I believe the price of filing your taxes online has been dropping each year. Is it possible they are using the fees to offset some of the initial setup/development/research costs? And with time, it'll drop to more reasonable levels?

Just ignore the whole issue of less people using snail mail and the solution being to raise stamp prices. :)

Re:Too expensive

[ericspinder]

The "bulk" pricing for 10 cents is 100,000 units (that's ONE MILLION DOLLARS), and they expire in one year. Also it would seem that you can buy "just one" for your taxes. You need to buy 25 of them at least, and if you need a 26th, bing, you'll need to buy 25 more. The whole thing stinks.

Re:Too expensive

[mandalayx]

For what the timstamping service actually does, it costs way, way, way too much. It cost 80 cents per email, 10 cents in bulk. This is super trivial; it should cost 1 or 2 cents, and yahoo mail or hotmail could do it for free. I don't see what Authentidate offers, other than a countersignature with a private key, timeserver, and a hash.

Some documents are more important than $0.80 and are being received by parties who respect USPS more than PGP. Unjust? maybe. True? probably.

Re:Too expensive

[dyte]

But if they raise stamp prices too much then I might not get the same amount of junk mail!

Re:Too expensive

[OpenMind(tm)]

Wouldn't that be one million cents, aka $10,000?

Re:Too expensive

Oh listen to Math Boy here. You people with your "numbers" and "calculations". What's with you guys? Get a grip.

Re:Too expensive

[e-TimeStamp]

Company I work for charges 50 cents for the first timestamp. Pricing is here: www.digistamp.com/FAQts.htm#cost We don't have a concept of expring after a year. We have been able to reduce the prices every year for the past 4 years as customer base grows. I agree, the price needs to be less. But, the operations, development and NIST certified hardware, etc. has some cost. Our hope is that as more users convert from paper based processes they will use digital time stamps. With volume our prices will be less - pennies. I expect this price in 2 years. Sorry if this sounds like a company sales attempt. The Java, C, .NET toolkits are no charge.

Want to do this now as an end user ?

[j_dot_bomb]

Want to do this now as an end user ?
go to http://www.getstamped.com/

Re:Want to do this now as an end user ?

[ccwaterz]

It doesn't seem to be working...

BCCing notary@getstamped.com (to get a signed reciept delivered back to me) bounced. ... while talking to mail.getstamped.com.:

>>>>>> RCPT To:

550 5.1.1 ... User unknown

And I have yet to recieve a test message I
sent to chad@mydomain.net.getstamped.com (which would have forwarded a signed message to chad@mydomain.net)

Copyrights and "proof of prior method"

[atcurtis]

I know that a lot of people reading /. hates copyrights and patents... but of these digital postmarks stand up in court, they can be of great benefit to individuals and small entrprenurs in their efforts to compete with 'the big guys'

People can publish their ideas, essays, music on the internet complete with a copy of the digital postmark, and should a big fish try to patent or claim copyright or patent on the material, the small-time individual can point at the digital postmask and prove their ownership.

I personally would support this... I would love to be able to share some of the ideas I have - but I do not want someone else to come along and try to patent them or claim that it was their's first. Such a digital postmark would give me the confidence to share ... and possibly give others the confidence to share their creations.

Just my 2cents worth.

Re:Copyrights and "proof of prior method"

[Coder1]

My boss's boss, a lawyer, wants to know if authentication proves beyond any legal doubt that my e-signature is really me. I think that he has studied e-signatures to a lesser degree. Any legal experts out there who would care to comment?

Re:Copyrights and "proof of prior method"

I'm guessing the legal system hasn't thought of this, but what happens if someone steals your private key and starts signing documents with it? What if a virus on your computer starts signing documents and mailing them out?

Re:Copyrights and "proof of prior method"

[squidfood]

My boss's boss, a lawyer, wants to know if authentication proves beyond any legal doubt that my e-signature is really me.

In other words, is an e-signature the equivalent of a handwritten signature (weak) or the equivalent of a witnessed/notarized signature (strong)?

Re:Copyrights and "proof of prior method"

[Katharine]

In Illinois, at least, I believe that the rule is that an electronically signed document is rebuttably presumed genuine. In other words, if someone says that you signed the document, they don't have to prove you signed it, you have to prove that you didn't. (See 5 ILCS 175/10-120.)

It isn't so different from the way physically signed documents are treated. Remember, documents signed with a rubber "signature stamp" are still signed for many purposes.

Adobe coming

[Groo+Wanderer]

I talked to the PR people and a hardcore tech from the company at Comdex. I bitched them out about the MS only, and used the usual arguements. One of the things they said was that linux support was on the list, and more importantly, the next version of Adobe products would support thier tech. I know Acrobat was on the list, but I don't remember if the rest of their programs were.

I guess it is time to start writing all those people I got cards from at Comdex and write an article on this :).

-Charlie

Re:Word only irrelevant (except for USPS?)

[Mozz+Alimoz]

Seems like the Authetidate technogoly is applicable to many document types. Their FAQ says: What does the system consider a document? A document is any file in any folder. AuthentiDate isn't restricted to working with a limited number of document extensions. Even documents without extensions can be AuthentiDated.

But it does seems like the USPS's implementation that has only allows Microsoft Work Docs. Only for now I hope.

How bout a webservice

Instead of making clients use java...this should be a simple webservice. Submit a document, get back timestamped document. That way you could do it from pretty much any platform.

Re:How bout a webservice

[ericspinder]

I don't think that is ever the intention for them to ever handle your documents, from the site:

Data stays private. Service never has access to your content and requires no modification or transmission of content. (only a hash code of the file is logged as evidence of authenticity.)

However, from what I see you need to sign into the website and upload you hashcode for registration, and that would be a good function for webservices (and micropayments or microcharges!). On another note the Java SDK seem like vaporware, I can find it anywhere! Even the Authentidate website(the USPS's "partner" in this venture), doesn't seem to have it.

but it likely is more likely

[CmdrTostado]

but it likely is more likely

now just how likely is that ????

No longer an urban legend!

[jea6]

This is just one step closer for the postal service to be able to charge for each e-mail sent (at least those that are signed). Guess it's not an urban legend for much longer!
</TinHat>

Re:No longer an urban legend!

[Hentai]

Only the ones you want signed. If you don't care about authenticity, send as many as you want for free, and don't bother the USPS about it.

If it's absolutely, vitally important that the recipient know that YOU are the sender, pay the $0.80 for the e-stamp and you're off.

is it public or open source?

[LEPP]

This might be a little hypersensitive but I feel a little nervous about putting this signature system in the hands of a company with no proof that the code nor the process is secure. I know OS code is not flawless but at least it can be peer reviewed. Also, what if the company goes out of business. I have no problem with a company managing the sinatures, but I am just a little apprehensive about betting only on the future of a company. Also, this does not seem even a little bit innovative. Essentially they are talking about doing a digital signature. We were doing very similar projects in my CS security class using OS security tools. Digitally signing a hash is nothing new. Maybe I am being naieve, but I don't think so. If I am being naieve, please explain how.

LEPP

Re:is it public or open source?

[e-TimeStamp]

In the Java environment, the code to create the actual signature is in your Java run-time. This includes access and using your private key. At www.digistamp.com we have taken the approach of seperating the protocol encoding from the actual signing step. So, we supply the source code that deals with the private key and signature creation. It is here: http://www.digistamp.com/t3override.htm

The idea is that this would be the integration point for using smartcards. Or, the user can substitute their own code that has the opportunitiy to "see" the private key. The code is pretty straight forward to create a signature using Java.

The actual encoding of the RFC 3126 message is not so critical privacy. This encoding is important to interoperability and it is important that it be done to support the various vendor libraries (e.g. MS Cryptoapi, bouncycastle, etc.)

In the Microsoft world the signature creation is using their CryptoAPI. A little more difficult and is in C, but there are some good examples available. Our C toolkit has examples if you would like.

regards, Rick

"Wanishing ink"

[GQuon]

Tampering by a macro or script would change the file, thereby making it incompatible with the hash, no?

Not necessarlity. If you have a macro that re-writes the document, the hash would change, and the tampering would be caught.

But: If you make a macro that doesn't change the contents of the file, but rather a macro that changes just the view, the hash would be the same.For example: You write a document that contains both correct and false information. Before a certain time, the correct information is shown. If you open the document after a specified date, the macro changes what is shown to the reader.

For this wanishing ink to work
- it must be possible to write such a macro.
- the reader must trust all macros.
- the reader must not be savvy enough to examine the raw word file.

Re:"Wanishing ink"

[way2trivial]

-and must not check after the fact
if I'm told i 'signed off on it' and it turns out to be inverted as to meaning, I can then check the raw file, evidence of what was displayed when I signed would be there, or again-- the hash fails the check.

Re:"Wanishing ink"

[bendan2000]

What ever you do, the evidence of a document that have been forged or tempered will always be there. When challenge time, you will be caught. I think USPS can prosecute any one try to forge a document.

Re:"Wanishing ink"

[realdpk]

The file itself doesn't change though - the hash will still match. Unless there's a way to copy from Word and paste into some hash-checking thing, in which case it'd work fine in Notepad too...

Re:"Wanishing ink"

The trick would be to make the macro dependant not on the date, but on some bug that couldn't be independantly verified to have ever produced the (assumed) original signed document, and just claim "We use really weird macros in our department". Or just include in the EULA that you sign: "We reserve the right to make further changes without notice". This would make it fun to get free stuff/money out of UCITA states.

Re:"Wanishing ink"

[way2trivial]

right, but if it came up as say, a legal matter as to what I digitally signed, the raw data will show what version I signed.. and that would be defense enough..

scenario- someone creates such a document in my or another company, I read it, approve it, digitally sign it..
two weeks later it displays that I did something VERY STUPID to appearances sake.. I look, I say, that's not what it said when I signed it, lets' check the raw data.. the op I responded to said that a person would have to be ignorant of 3 things for it to slide, I point out, even if you were deliberately ignorant of the three things- in order for my 'digital signature' to match,it would have to still have the same raw data, and I could check after the misleading problem arose.

Re:"Wanishing ink"

[realdpk]

OK. I understand what you're saying. However if the text two weeks later said something reasonable, but incorrect - say it was a report on some dollar figure, and the dollar figure was increased or decreased 25% - it'd be somewhat unlikely that someone would go through extra effort to verify that a macro did not change the data.

A cut-and-paste verification solution, say an executable you run on your desktop (so you don't transfer the data elsewhere), could probably take care of that problem, making it easier to verify.

Digital signature implementation in UK

[sufehmi]

In UK, the move to digital signature was pioneered by Inland Revenue (IRS for Americans). The Government's Gateway provides the digital certificate, which then can be used to digitally sign online forms.

However there were concerns that the implementation is too proprietary, risking dependence to few vendors. Considering what the Gateway's doing, I think these concerns are valid.

There were also little silliness along the way, such as the 50 poundsterling discount by Inland revenue (IRS for Americans) if you submit your tax online and sign it with your certificate BUT the certificate itself cost 50 poundsterling as well, etc.

But I haven't followed it for quite a while now, hopefully things are better now.

Re:Digital signature implementation in UK

[sufehmi]

Oh yeah, they're also too Microsoft-centric for now, for example the certificate (from Chambersign or Equifax) currently doesn't work on Macintosh. No word about how it is on Linux.

Does that means that basically the UK government is telling its citizen to use Microsoft products ? A company already judged as a monopoly in USA ?

I wonder how it is with the USPS' implementation ?

Already exists - kinda

There's probably a sourcecode escrow service like that somewhere (perhaps sourceforge?), or you can register it with the US copyright agency, whatever it's called (as a literary work).

The WGA (Writer's Guild of America) lets you email in a file in whatever format, they timestamp it and will support you in court, let you download it whenever (as a backup).

I believe it's free if you're a member, or ~50 US$ otherwise, but I'm not sure how long they keep it. At least 10 years, and I think more like 30 or 50.

Err. . . copyright registration

Umm, well, if you are worried about that, just register your code with the U.S. Copyright Office - that is the whole reason for the Copyright Office's existence - to register copyrights and provide legal recognition that every court MUST accept, that you registered copyright on something on a certain date (granted it doesn't prove you actually OWN the code you copyrighted - see e.g. groklaw.net articles about how both Novell and SCO claim to have registered the copyrights for ATT Unix with the copyright office).

That is the legally RECOGNIZED way to 'timestamp' your code. By sending it to the copyright office.

Re:Err. . . copyright registration

[Katharine]

Of course, it will cost you $30 to register it, not to mention the postage costs for mailing the two deposit copies and the time it will take for you to fill out the registration form. (Make sure you fill it out right the first time, correcting it after the fact is expensive.) For some things, it might not be worth it.

On the other hand, if you ever have to sue someone for copyright infringement, formal registration is nice because it makes certain remedies (like collecting legal fees from the infringer) available that wouldn't be otherwise.

What PGP Corporation has to say about it

[Betabug]

There is an article by PGP Corporations CTO Jon Callas about it. His tagline is "Do we need another version of digital timestamps?"

What he has to say looks like plain common sense to me:

• requires Windows xP/Office 2003 - expensive
• requires purchasing a certificate, which is not really necessary for a timestamping service
• the price seems high

His conclusion: "To me, this seems like a solution in search of a problem." He even mentions open standard file formats. Nice read.

Re:What PGP Corporation has to say about it

A USPS postmark tells you two things:
a) Where the letter/parcel entered the USPS system.
b) On what day (and time if you're lucky) teh letter/parcel entered the system.

That's it.

All this system seems to be able to do is say "someone" submitted a document and we know:
a) the documented existed at this date and time.
b) this is the unique signature for the document - if someone changed the content, it wouldn't get this signature.

How useful is that?

1) Documenting "prior art"?
2) Verifying that a piece of digital content existed on/before a particular time?
3) Verifying that digital content hasn't changed since a particular time?

I agree, it's a technology waiting for a real use.

Yawn.

Signing as well as timestamping

[isn't+my+name]

In the protocol descriptions, the customer who wants to sign a document first produces a hash and signs that. That is sent to the USPS who combines it with a timestamp and then signs the whole thing.

So, you can verify the persons signature and verify the time that it was submitted for an electronic postmark. Based on the language in their whitepaper, they are really looking at setting up a system that is as legally strong in court as a physical signed document.

I do wonder about the fact that they are only keeping the verification data online for seven years, though.

Re:Signing as well as timestamping

[Directrix1]

They don't need verification data anyways. The fact that they signed the hash (combined with the embedded timestamp) is proof enough.

But damn it, this pisses me off. The real issue here is being ignored. They are trying to patent this process. Does anyone else find this to be a blatantly obvious system. Almost a year ago I literally was thinking about why this exact system didn't already exist. This patent will be a big one if it goes through, I guarantee it.

Re:Signing as well as timestamping

[e-TimeStamp]

Can you tell me where you read that the USPS is trying to patent this process? As background, the time stamp protocol is in IETF RFC 3161. The combination of time stamp with signatures is in RFC 3126 "Long term electronic signaures" (includes multple signature, commitment qualifiers, signing comments, etc). The company I work with has made the assumption that these standards would be the basis for the presentation of binding signatures. (www.digistamp.com) There is ongoing work at OASIS as they work on the XML versions of these protocols. The standards involve both protocol and process. There is still the process of CA related to associated an individual to a public key. There are several of these in practice and often involve a step of using a notary. It has been interesting of the past few years in the timestamp business to see how the concept of a notary varies from country to country. Anyway, can you tell me where you read that the USPS is trying to patent this process? Thanks

Re:Signing as well as timestamping

[Directrix1]

It was AuthentiDate that was trying to patent it though. It should be on their site somewhere but I can't find where now (at work).

SDK Download Request Location

[isn't+my+name]

Before submitting the article, I e-mailed to ask about this and the pricing. Did not get a response until after I had submitted to Slashdot, but here is the link for requesting an SDK.

And here is the link for pricing. Note, I was told that the introductory pricing period has passed and I was also told that the entire website was due for an update in the next week or two. Had I known that when I submitted the Slashdot article, I would have waited a bit. Maybe a good slashdotting will get a redesign that can handle a heavy load. :)

Re:SDK Download Request Location

[eclectro]

It looks like that at the link you posted the current prices are shown. It says prices are for contracts after the first.

Reminds me of something . . . .

[Greenisus]

ZapMail, except this time it being legal comes from a digital signature AND a money trail, instead of just a money trail. It didn't work before, so I'm skeptical.

That's great but...

When are they gonna' stop smashing everything they ship to bits?

Linux Version?

[gsperling]

And how long before a Linux version and applicable plug-in is available for OpenOffice.org? I mean, I'd love to be able to take advantage of this type of technology, but until it's ported to Linux, it's of no use to me!

Re:Linux Version?

[e-TimeStamp]

I think any Java toolkit 'should' work on Linux. We have tested our desktop signing and timestamp software on Linux. There were some GUI display issues, but that was mostly due to coding style problems that were our fault. Interesting that porting platforms in Java does help the developer improve their code. Feel free to give our Linux desktop app a try, appreciate any feedback.

I have always been curious how to work with the OpenOffice.org

I am not sure how best to integrate with word processing software. I think of signing and timestamping as being external tasks? Maybe the integration is to help the work flow - finish writing the document and 'click' to copy the current state and sign? I like that timestamps can be applied to any type of file (graphics, audio, etc); therefore, creating the TS would be external to the software that creates the file.

Regards, Rick

Office for Mac? Anyone? Bueller?

[mikedaisey]

It's bad enough that the signature system only works with Microsoft Office, but it doesn't look like it supports Office on the Macintosh--it would appear that people don't even have to pay lip service toward supporting more than the MSFT hegemony.

Non-Repudiation

Everyone keeps talking about the non-repudiation of digital signatures, but it's possible for your signature to end up on documents you didn't actually sign. What are you supposed to do once this happens; how does one prove they didn't sign the document?

What happened to certified email?

[Hiroto.+S]

Talking about USPS, whatever happened to the certificate service they once started?

USPS delivers a digital, signature-certified mail system

It is no where to be found in usps.gov anymore.

Re:What happened to certified email?

[Skjellifetti]

Talking about USPS, whatever happened to the certificate service they once started? It is no where to be found in usps.gov anymore.

Uh, you mean this?

Re:What happened to certified email?

[Hiroto.+S]

No, that's certified MAIL and not certified EMAIL as mentioned in my link. Yes, you can track certified physical mail electronically now, but the service I mentioned was totally digital. They were providing digital certificate service.

Link to request Java SDK

[isn't+my+name]

I e-mailed for more info and was provided this link to request a Java SDK:

https://www.uspsepm.com/crm/sdkRegister.adate

Reinventing the wheel, should have used OpenPGP

[Sloppy]

Why did they come up with something new that requires special SDKs and probably uses a new file format, instead of just using OpenPGP?

USPS - Gov't or Microsoft?

[provoix]

Can somebody explain to me how a Microsoft Advertisement landed itself on a Government website (https://www.uspsepm.com/epm/epm_office_ext/index. htm)? The domain is owned by the USPS. Am I missing something here? I was under the impression that commercial advertising was not permitted on government help domains...

Re:Government waste - they do!

[ericspinder]

the site is "powered by" Authentidate. At 80 cents for each (25 min), who do I have to bribe to get that contract!

Yours Truly, [USPS Advertisement]

[Flamingcheeze]

Is it just me, or is that electronic postmark the ugliset thing you've ever seen? That's like signing a love letter with a big Hallmark ad...

Authentidate

[ari_j]

Hell, I thought Authentidate was a dating service that guaranteed the gender of your potential date.

Don't fuck with the USPS

Every transaction on the Internet I complete must somehow involve them, if the merchant is unwilling to accept a USPS money order, delivered via the USPS I will have nothing to do with them. Look up the fraud division, they go completely bizerk when anyone uses them to commit fraud, they want to send you to federal pound you in the ass prison, they live for catching scammers.

They still have a 2.5 million reward for the person who sent the anthrax letters. Along with 100K for information for the murder of a mailcarrier, does your job put bounties on people who kill you?

Would you really have the desire to mess with the people who define "going postal".

Very cool...

[bahamat]

IF IT WERE OPEN!

Patent issue

[isn't+my+name]

I had missed that they were attempting to patent it. Yes, I do think a patent on this would be pretty ridiculous. I'm certain you could find the system described in many published works. I'll bet the patent is in the automating of the process using their API--but likely worded so broadly that it can be used to go after many other implementations.

The scariest thing:

[Pig+Hogger]

Apparently, the USPS feels that the strong legal protections against interfering with the US mail will apply to the EPM program.

Scariest shit is that spammers may start to send EPMed spams that it would be CRIMINAL to block.

No more blocklists a la SPEWS...

This should be free in Star/OpenOffice or PDFs

[dalesun]

Sun could easily gain a huge advantage for StarOffice (over Microsoft Office) by offering this feature for free in StarOffice. It should be easy to develop and very cheap to provide.

Perhaps a simple timestamp/hash version could be included in the free OpenOffice, with a more advanced certificate based or user-ID authenticated option in StarOffice.

This would also be perfect for Adobe to offer for Acrobat PDF files.

If free and non-proprietary, it would quickly become a popular standard, and perhaps THE standard.

fair enough

[*weasel]

so then requiring a fingerprint for a USPS client certificate would violate the commonly held economic rationale:

that this sort of mechanism annoys and risks alienating honest customers, provides little tangible deterrant to actual criminals, and yet costs significant amounts of money to implement and maintain.

We had a terminology gap :)

They should patent it!

[s.fontinalis]

As long as they set broad terms on usage this will prevent control of the process by some Johnny comelately.

Re:They should patent it!

[allism]

Yeah, and it will prevent USAGE of the process by some Johnny comelately.

GPGNotary 1.0

[todu]

I once had a very similar idea and developed a working perlscript implementation. But I never had the time to release it officially. So if someone is interested in a free (as in freedom aswell as gratis) timestamping service you may download my package from the below link and email me comments:

http://bokstavera2.sourceforge.net/GPGNotary-1_0.t ar.gz
(remove the space in the link).

Fraud

[complexmath]

While this will be a great boon to people looking to defend copyrights, there is a downside to this legal defensibility: what happens if someone gains access to your PC? I can just imagine trying to defend myself in court by saying that while there is a signed and dated document delineating my plans to murder someone, I did not actually commit the act nor did I even write the document. Fun fun.

Re:Fraud

[e-TimeStamp]

Yes, what you describe is a significant risk when using digital signatures. The challenge is to protect your private key.

Some alternatives:
1. The Java environment includes the tools to keep the private key in a PKCS12 (encrypted) file that is protected by a password. Choose a strong password for this file's protection. I don't know if the USPS EPM uses this Java feature. DigiStamp does.
2. Keep that password protected file on a removeable medium (floppy, CD) and then securely store. Only use floppy disk only when signing. This approach does make signing a little more difficult task. But, signing as deliberate act that requires you to retrieve and unlock the key is not bad, my opinion.
3. The most secure solution with current technology is a smartcard. This solution could include the smartcard creating the actual signature within the card after you supply a PIN directly on the cards embedded key pad. At DigiStamp, we have not yet found a smartcard with all of these qualities.

Our signing and timestamping desktop software has some information about smartcard integration here: http://www.digistamp.com/FAQsig.htm#smart

rick at digistamp.com

Right

[GQuon]

Correct. It's covered by the "examine the raw word file" criterium.

Reply from EPM Manager

[Esteanil]

The mail I sent:
"Good day,

I was merely wondering wether or not EPM will be offered as an international service, rather than merely national as the " Nationwide reach and trust " point in "Benefits of EPM" on your website seems to suggest.
If it is to be only national, this will obviously obstruct the adoption of EPM somewhat.
Also, if it is national only, is this due to laws against exporting strong encryption?

Yours truly,
My Name - Norway "

Reply:
"
The USPS EPM has legal standing in the United States. To your point, however, we can not state with any certainty how it will be viewed by other countries' legal systems. However (and this is a BIG however) many postal organizations around the world are also developing their own EPM - type systems. And our UN chartered global postal administration (Unviersal Postal Union, located in Berne) is in the middle of creating standards and getting each of the world's postal administrations to build EPM systems that adhere to a certain minimum set of criteria. And, as you know, postal organizations worldwide have agreements in place to help each other deliver mail without the process being cumbersome to the sender or recipient. So the UPU will also handle similar agreements behind the "Postal-offered EPMs" of the world.
The situation you are concerned about does exist today, but folks are working on making the EPM standards international and reciprocal. It will take a while (as all standards organizations do) but it will come together eventually.

I hope my answer helps.

Leo Campbell
EPM Program Manager
"