ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: [ietf-dkim] draft-otis-mass-reputation-02

2005-09-07 12:35:17
from [Hallam-Baker, Phillip] [Permanent Link] 
Some points:

1) The document is useful as a proof of concept even if it is not
necessary to necessarily define a standard for these things. 

2) On per-user certificates I think that the real argument here is that
in the context of spam and phishing the aggregate reputation is much
more interesting than the individual. Distinguishing the behavior of
pbaker(_at_)verisign(_dot_)com from *.verisign.com is not very useful where we 
are
talking about the decision to deliver or not.

There are cases where this is relevant but I suggest that these are much
less common and likely to be a subset in most organizations. For example
end user keying might be relevant for professionals at their place of
work, I do not see it as being essential for people with a hotmail
address.

I think that it is better to make the case for domain based keys in
their own right, it is a very strong one and does not depend on
attacking end user keys. The best way to deploy end user keys is to
begin with domain keys. That allows a thousand or a million users to be
added at a time, not one at a time.

3) On the key lengths I think that 1024 is sufficient for transport
keys, in fact it is arguable that 512 is acceptable since the factoring
time is much much longer than the message validity. On the other hand
the effort required to argue for 512 bits is not worth the performance
benefit.

I would however argue for 2048 bits as a minimum for any new end-user
keying scheme and I would want the ability to handle up to 4096 bits.




-----Original Message-----
From: ietf-dkim-bounces(_at_)mipassoc(_dot_)org 
[mailto:ietf-dkim-bounces(_at_)mipassoc(_dot_)org] On Behalf Of Douglas Otis
Sent: Wednesday, September 07, 2005 2:27 PM
To: IETF-DKIM
Subject: [ietf-dkim] draft-otis-mass-reputation-02


Sorry, those links were restricted it would appear.

http://www.sonic.net/~dougotis/internet-drafts/draft-otis-mass- 
reputation-02.html
http://www.sonic.net/~dougotis/internet-drafts/draft-otis-mass- 
reputation-02.txt

-Doug
_______________________________________________
ietf-dkim mailing list
http://dkim.org




_______________________________________________
ietf-dkim mailing list
http://dkim.org
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [ietf-dkim] draft-otis-mass-reputation-02, Douglas Otis
Next by Date:  Re: [ietf-dkim] draft-otis-mass-reputation-02, Douglas Otis
Previous by Thread:  [ietf-dkim] draft-otis-mass-reputation-02, Douglas Otis
Next by Thread:  Re: [ietf-dkim] draft-otis-mass-reputation-02, Douglas Otis
Indexes:  [Date] [Thread] [Top] [All Lists]