On 12/28/2011 7:27 AM, Rolf E. Sonneveld wrote:
Hi,
just to check: S/MIME (http://tools.ietf.org/html/rfc5751) does not does
include/cover the 5322.From and the 5322.To fields as part of the cryptographic
payload. Protection of headers can be achieved by wrapping up a the complete
message into a message/rfc822 bodypart and sign/encrypt that
However, of course, the contained message then ceases to be treated as a normal
message by the receiving user agent. It's just content.
Although not it's primary task, data integrity protection /is/ provided for
listed header fields by DKIM. (The signature lists the fields it covers. This
typically does include From:, To:, and cc: and Subject.)
d/
--
Dave Crocker
Brandenburg InternetWorking
bbiw.net