On Tue, 13 May 2003, Tom Thomson wrote:
Eliminates the "dictatorship" objection to RMX (but allows domains to be
set up as dictatorships if the domain owner wants them that way)
Hi Tom,
Just to clarify, RMX-like proposals give a sending domain the ability to
act as dictator if its owner wishes, but do not mandate that it act as
dictator. The domain owner may choose not to filter outgoing content.
(Indeed, if RMX were available to me, I would definitely not
content-filter outgoing messages from other users at my domain, except in
the context of virus defense--in which case it would be an optional
feature). This decision would fall under the scope of a privacy policy.
Your crypto-based alternative also allows the domain owner to act as
dictator if he/she wishes, by withholding the signing key. There are
security advantages to going this way, even if there is no intent to
filter, since it prevents the key leakage.
So would you say that the principal advantage of the crypto approach is
that it prevents the domain from acting as dictator while plausibly
denying same?
If so, do you believe this advantage is worth the additional
implementation cost?
Please bear in mind that a user may choose any domain on the Internet
willing to offer mail service, and may even operate his/her own domain.
This seems vastly less restrictive than the current situation, wherein the
user would be left with few options if his/her ISP started filtering
outgoing mail (intercept outbound port 25). The ISP also has an incentive
to do so--to avoid being blacklisted!
Thanks,
Mike
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg