While we are on the topic of S/MIME: currently majority of MUAs have
S/MIME support built-in including root certificates. Why is that no
banks or financial companies that are suffering from
"phishing" attacks,
consider signing their email via S/MIME?
I know several banks that are considering it. The disadvantage is that there
are email users with MUAs that don't handle S/MIME. The big problem is that
Eudora is effectively an orphan code-base with little serious development
work.
There is a private working group looking at this. Yahoo! Domain keys looks
like a better fit for what it is intended to achieve.
Phill
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg