Hi, everybody
A user receives a meeting invitation with a digitally signed and it is correct:
But when delegating it sees that the sign is broken:
Is this correct? Or is it an error? Has anyone encountered this problem?
Thanks in advance for your help
Hi.
That makes sense, as digital signature aims to ensure that the message being sent is for the intended recipient.
As you/the user have technically speaking changed the recipient by delegating the meeting invite, the message itself is still digitally signed, but as the final recipient is not the originally intended one, then it makes sense that it is not trusted (which is the message shown to you/your user in your screenshot).
Regards,
Elvis.
Unless it is a platform issue with verse, I feel , if the message has been changed, it will technically invalidate the signature as the hash of the message being signed has changed since the message it self has changed. hence once the message hash is decrypted , the decrypted hash will not match the message hash.
But the message in this case should be "Invalid Signature" and Not "Untrusted".
"Untrusted" in this context should mean that the Signature is Valid as the decrypted hash matches the message hash (which implies , it is not the original message but a new message has been composed by the system and signed and signature is valid and document is not modified after application of digital signature), but the Signer's Certificate is not issued by a trusted source.
It could as well be explained as elvis has done in the reply above. In which case the message "Untrusted" is wrongly being shown instead of "Invalid Signature". (that would happen if the original message is modified by the system and sent)
hope this helps
