Description
"Trustworthy On-Line Signatures: The Nightingale Approach"
In the standard approach to on-line digital signatures, a user obtains
authentication credentials from an authentication server, then presents
the credentials to a signature server to obtain a signature on a message.
Though helpful architecturally, the approach presents two points of
compromise, since an attacker who compromises the authentication server
can impersonate the user. This talk describes a new method, based on
the Nightingale authentication technology, where two servers jointly
participate in each step, but neither has sufficient information to
impersonate the user or generate a signature. The result is an on-line
signature system that is both convenient and trustworthy.
Presented at RSA Conference 2003 Europe.
