5.1 Security Considerations for Implementers

The protocol server and protocol client both encrypt data stored on the protocol server when applying a digital signature to a form file. A digital signature (2) is only as secure as the algorithms used to generate its encrypted elements. If an algorithm used to generate encrypted elements of the digital signature (2) is compromised, the integrity of the digital signature (2) can no longer be verified.

Security considerations for digitally signed form files can be found in [MS-IPFFX] section 4.1.