Re: [ietf-dkim] Re: testing Message Corpus & question for base spec

ietf-dkim

Re: [ietf-dkim] Re: testing Message Corpus & question for base spec

2006-02-12 10:21:38

On Sat, 2006-02-11 at 22:31 -0800, Jim Fenton wrote:


The MUST in the draft refers to the validity of the signature, not the
validity of the message.

If you subscribe (as I do) to the philosophy that an invalid signature
should be treated as though it is absent, then the verifier MUST
behave as though the expired signature just isn't there.  Maybe there
is another valid signature, or maybe not.  If not, the message is
handled just like an unsigned one.


This view overlooks the effect policy might play.  With strict treatment
of an expiry time, this could create situations where messages are
rejected post acceptance, but prior to delivery, for example.

-Doug

_______________________________________________
NOTE WELL: This list operates according to 
http://dkim.org/ietf-list-rules.html

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [ietf-dkim] New issue: base-00 3.5 x=, (continued) Re: [ietf-dkim] New issue: base-00 3.5 x=, Michael Thomas Re: [ietf-dkim] New issue: base-00 3.5 x=, Dave Crocker Re: [ietf-dkim] New issue: base-00 3.5 x=, Douglas Otis [ietf-dkim] Re: New issue: base-00 3.5 x=, Frank Ellermann Re: [ietf-dkim] Re: New issue: base-00 3.5 x=, Michael Thomas [ietf-dkim] Re: New issue: base-00 3.5 x=, Frank Ellermann Re: [ietf-dkim] New issue: base-00 3.5 x= (was: testing Message Corpus& question for base spec), Hector Santos Re: [ietf-dkim] New issue: base-00 3.5 x= (was: testing Message Corpus& question for base spec), Douglas Otis Re: [ietf-dkim] New issue: base-00 3.5 x= (was: testing Message Corpus& question for base spec), Hector Santos Re: [ietf-dkim] Re: testing Message Corpus & question for base spec, Jim Fenton Re: [ietf-dkim] Re: testing Message Corpus & question for base spec, Douglas Otis <= Re: [ietf-dkim] testing Message Corpus & question for base spec, Tony Hansen Re: [ietf-dkim] testing Message Corpus & question for base spec, Hector Santos Re: [ietf-dkim] testing Message Corpus & question for base spec, Eric Allman Re: [ietf-dkim] testing Message Corpus & question for base spec, Hector Santos Re: [ietf-dkim] testing Message Corpus & question for base spec, Eric Allman Re: [ietf-dkim] testing Message Corpus & question for base spec, Hector Santos Re: [ietf-dkim] testing Message Corpus & question for base spec, Eric Allman Re: [ietf-dkim] testing Message Corpus & question for base spec, Mark Delany Re: [ietf-dkim] testing Message Corpus & question for base spec, Hector Santos Re: [ietf-dkim] testing Message Corpus & question for base spec, Mark Delany

Previous by Date:	Re: [ietf-dkim] Re: New Issue: Threat-00 Limiting the scope of trust, Jim Fenton
Next by Date:	Re: [ietf-dkim] Re: New Issue: Threat-00 Limiting the scope of trust, Douglas Otis
Previous by Thread:	Re: [ietf-dkim] Re: testing Message Corpus & question for base spec, Jim Fenton
Next by Thread:	Re: [ietf-dkim] testing Message Corpus & question for base spec, Tony Hansen
Indexes:	[Date] [Thread] [Top] [All Lists]