> Scott> Once you require the global hash, you also require submission
> Scott> of any changes you make, whether it's to controlled or
> Scott> uncontrolled fields, back to the trust authority. That's what
> Scott> people don't want, or at least what some people think they
> Scott> don't want.
>
> I guess I don't see submitting something as part of a single request as
> the same as submitting something to a CA ahead of time.
Maybe I don't understand what you mean by "single request". Are you
suggesting some kind of real-time submission + hash taking place? That would
be a little tricky unless, again, you didn't actually care what it was
hashing/signing.
-- Scott
|