A Federal PKI with Multiple Digital Signature Algorithms

Several digital signature algorithms are coming into general use. A certificate containing a key for one algorithm can be signed with a different algorithm. This paper discusses the interoperability issues where different digital signature algorithms are used in one Public Key Infrastructure. The key to interoperabil ity is client software that can validate signatures for all the algorithms used. Some rules that will simplify certification path processing are proposed.