@techreport{ietf-smime-sigattr-01,
    number =    {draft-ietf-smime-sigattr-01},
    type =      {Internet-Draft},
    institution =   {Internet Engineering Task Force},
    publisher = {Internet Engineering Task Force},
    note =      {Work in Progress},
    url =       {https://datatracker.ietf.org/doc/draft-ietf-smime-sigattr/01/},
    author =    {Jim Schaad},
    title =     {{Signing Certificate Attribute Specification}},
    pagetotal = 7,
    year =      1998,
    month =     jul,
    day =       7,
    abstract =  {A set of attacks on SignedData objects have been identified relating to the fact that the certificate to be used when verifying the signature in a SignerInfo is not cryptographically bound into the signature. This leads to a set of attacks where the certificate used to verify the signature is altered leading to possible incorrect results. This document describes these attacks and provides ways to deal with some of the attacks.},
}