"Robert A. Rosenberg" <hal9001(_at_)panix(_dot_)com> writes:
At 01:30 +0100 on 10/17/2013, Richard Clayton wrote about Re: [ietf-smtp]
DKIM encryption, was Request for discussion:
erk ... you don't generally wish to use public keys on whole messages,
the planet is getting pretty warm already -- there are practical reasons
why existing schemes involve encrypting with a stream cipher with a
randomly chosen session key and then just using the public key system
for transmitting the session key.
How about doing the message encryption with the stream cipher and use the
public key to encrypt it as a separate MIME part (ie: The message is
multi-part with the key MIME part and the encrypted MIME part)?
Coming up with a secure encryption protocol is hard, with a lot of
potential traps and caveats. I recommend reusing RFC 3156 and the
underlying OpenPGP format as much as possible to avoid incorrectly
reinventing a wheel.
--
Russ Allbery (rra(_at_)stanford(_dot_)edu)
<http://www.eyrie.org/~eagle/>
_______________________________________________
ietf-smtp mailing list
ietf-smtp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf-smtp