I should also add that there will have to be some kind of time sensitivity or other uniqueness test. Otherwise some malicious intermediary could intercept the message and save it for a while and then resubmit it into the mailstream. The destination would authenticate the message and old data would be posted to wherever. A way to guard against this would be to include time information in the encrypted portion of the file set. e.g. putting a serial number or time stamp in the file and having the script reject any material with an older serial number than the current version.
+-------------------------------------------------------------------+ | -=I T ' S P R I N C I P L E T H A T C O U N T S=- | |=- -=ALAN KEYES FOR PRESIDENT=- -=| | Balanced Budgets Personal Freedoms Morality Lower Tax | |=-- http://www.Keyes2000.com. --=| +———————————————————————————————————————————————————————————————————+
