On 9/18/2020 6:35 AM, Ned Freed wrote:
> All that said, if you really want to allow this sort of thing, the way
> to do it
> isn't to try and figure out how to describe the myriad representations
> allowed
> in our current set of encodings. That's never going to work, because
> people
> will never stop coming up with variations you haven't thought of.
>
> What you do instead is sign the material under the encoding,
> eliminating the
> encoding variations from the signature. And while you're at it, you do
> it in
> stages, so that when you're dealing with really large parts you can reuse
> previosuly computed hashes.
this.
I think I have a proto-draft writeup of the mechanism, FWIW. I can post it if
there's any real interest.
Ned
_______________________________________________
ietf-822 mailing list
ietf-822(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf-822