|
|
|
|
|
|
by webhat
4402 days ago
|
|
|
It's non-repudiation, it's so they can be sure that the person who received the email is also the person who requested the email. Proof of data integrity is typically the easiest of these requirements to accomplish.
A data hash, such as SHA2, is usually sufficient to establish that the likelihood
of data being undetectably changed is extremely low. Even with this safeguard, it is
still possible to tamper with data in transit, either through a man-in-the-middle
attack or phishing. Due to this flaw, data integrity is best asserted when the
recipient already possesses the necessary verification information.
https://en.wikipedia.org/wiki/Non-repudiation |
|
|