On Aug 24, 2005, at 7:11 AM, Tony Finch wrote:
Thanks for your suggestions. I've made a note of them
On Tue, 23 Aug 2005, Douglas Otis wrote:
This has been called a revocation-identifier in the past. It may be
described as a type of domain-cookie, or opaque-identifier. It would
permit a revocation mechanism and enable opportunistic
identifications
that could even detect cross-domain forgery without any mailbox-
address
constraints being applied.
Could you expand on this last sentence? I missed any description of
it you
may have posted already.
I don't think you were involved in Phase I of MASS. I have made a
draft that expresses this idea, in addition to the comments made on
the list.
http://www.ietf.org/internet-drafts/draft-otis-mass-reputation-01.txt
See section 8. Abating the replay attack
-Doug
_______________________________________________
ietf-dkim mailing list
http://dkim.org