Re: [Asrg] Proposal for transition to authenticated email

ietf-asrg

Re: [Asrg] Proposal for transition to authenticated email

2003-04-30 12:45:16

From: Kee Hinckley <nazgul(_at_)somewhere(_dot_)com>

 What about the processing load required to deal with verifying
 cryptographic signatures? Will that cause an unacceptable load on very
 large mail installations?

Excellent question.  I don't know and I do worry about it.


Cache a mapping between IP's and signatures, and fast track those IPs you know?


Signature of what?  If you trust IP addresses, then you don't need
any crypto mumbojumbo because IP addresses are practically unforgeable.

If you need a signature of a mail message, then IP addresses are irrelevant.

"Caching signatures" sounds bad, because it suggests a replay attack.


Vernon Schryver    vjs(_at_)rhyolite(_dot_)com
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [Asrg] Proposal for transition to authenticated email, (continued) Re: [Asrg] Proposal for transition to authenticated email, Ken Hirsch Re: [Asrg] Proposal for transition to authenticated email, Kee Hinckley Re: [Asrg] Proposal for transition to authenticated email, Vernon Schryver Re: [Asrg] Proposal for transition to authenticated email, Ken Hirsch Re: [Asrg] Proposal for transition to authenticated email, Vernon Schryver Re: [Asrg] Proposal for transition to authenticated email, Ken Hirsch Re: [Asrg] Proposal for transition to authenticated email, Ken Simpson Re: [Asrg] Proposal for transition to authenticated email, Ken Hirsch Re: [Asrg] Proposal for transition to authenticated email, J C Lawrence Re: [Asrg] Proposal for transition to authenticated email, Kee Hinckley Re: [Asrg] Proposal for transition to authenticated email, Vernon Schryver <= Re: [Asrg] Proposal for transition to authenticated email, Kee Hinckley Re: [Asrg] Proposal for transition to authenticated email, Eric Brunner-Williams in Portland Maine Re: [Asrg] Proposal for transition to authenticated email, Kee Hinckley Re: [Asrg] Proposal for transition to authenticated email, Ken Hirsch Re: [Asrg] Proposal for transition to authenticated email, Kee Hinckley Re: [Asrg] Proposal for transition to authenticated email, Ken Hirsch Re: [Asrg] Proposal for transition to authenticated email, Kee Hinckley Re: [Asrg] Proposal for transition to authenticated email, Ken Hirsch Re: [Asrg] Proposal for transition to authenticated email, J C Lawrence Re: [Asrg] Proposal for transition to authenticated email, Kee Hinckley

Previous by Date:	Re: [Asrg] Darwin's War, Eric Brunner-Williams in Portland Maine
Next by Date:	Re: [Asrg] Protecting Legitimate Commercial Email (was Re: ESPC P roposal), Barry Shein
Previous by Thread:	Re: [Asrg] Proposal for transition to authenticated email, Kee Hinckley
Next by Thread:	Re: [Asrg] Proposal for transition to authenticated email, Kee Hinckley
Indexes:	[Date] [Thread] [Top] [All Lists]