From: Kee Hinckley <nazgul(_at_)somewhere(_dot_)com>
What about the processing load required to deal with verifying
cryptographic signatures? Will that cause an unacceptable load on very
large mail installations?
Excellent question. I don't know and I do worry about it.
Cache a mapping between IP's and signatures, and fast track those IPs you know?
Signature of what? If you trust IP addresses, then you don't need
any crypto mumbojumbo because IP addresses are practically unforgeable.
If you need a signature of a mail message, then IP addresses are irrelevant.
"Caching signatures" sounds bad, because it suggests a replay attack.
Vernon Schryver vjs(_at_)rhyolite(_dot_)com
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg