ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

No new PKIs! (was: Re: [ietf-dkim] agenda item on upgrading hash algorithms?)

2006-02-22 17:13:22
from [Stephen Farrell] [Permanent Link] 

Douglas Otis wrote:
OID information would not be needed with DKIM public key information. Consider the DKIM public key cert isomorphic to that of OpenPGP. 

IMO it is not in scope to develop an alternative to an X.509 PKI nor
anything else remotely equivalent. I believe that that or anything
remotely equivalent would require a recharter. Proposing to define
a new, supposedly simple, certificate format qualifies as remotely
equivalent. DKIM's just-a-key-in-DNS approach is about as complex as
I want to see this getting for a good while yet, if not forever.

So, regardless of whether or not we use TXT or some binary format,
we will not go down the road of developing yet another PKI.

If that's not what you meant, sorry for jumping up and down but you
can put my sensitivity down to the fact that I was involved in the
start of PKIX, now more than a *decade* ago;-)

Stephen.

_______________________________________________
NOTE WELL: This list operates according to http://mipassoc.org/dkim/ietf-list-rules.html
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] Suggested alternate algorithm specification language, for now, Ned Freed
Next by Date:  Re: [ietf-dkim] agenda item on upgrading hash algorithms?, Mark Delany
Previous by Thread:  Re: [ietf-dkim] agenda item on upgrading hash algorithms?, Douglas Otis
Next by Thread:  Re: No new PKIs! (was: Re: [ietf-dkim] agenda item on upgrading hash algorithms?), Douglas Otis
Indexes:  [Date] [Thread] [Top] [All Lists]