[ietf-dkim] draft-ietf-dkim-threats-00 Unreasonable estimate of impact f

---[C: Unreasonable estimate of impact from a highly probable exploit.]
,---
| 4.1.  Attacks Against Message Signatures
|  ...
| Signed message replay                       |   Low  |    High    |
'---

This should read:

: Signed message replay                  |  Very High  |    High    |

How was this problem rated? Any large domain has a continuousbackground of abuse being sent. In some cases, this abuse mayrepresent tens of thousands of compromised systems. Any list-serveris also prone, as there is no practical means to screen participantsor expect effective outbound filters when the number of messages donot reflect the overall traffic until used in the replay. Out of themillions of valid users within these domains, rate limiting hasensured these abusive systems represent a smaller percentage of theoverall outbound email in most cases. When used in conjunction witha replay strategy, rate limits will not remain effective, and yet thesignature still remains valid.

Once the DKIM signature has any acceptance value, expect this problemto become paramount.



-Doug
_______________________________________________
ietf-dkim mailing list
http://dkim.org

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:

[ietf-dkim] draft-ietf-dkim-threats-00 Misstatement of the DKIM mechanism, Douglas Otis

Next by Date:

[ietf-dkim] draft-ietf-dkim-threats-00 Overlooking a practical solution while also recommending a highly unfair solution, Douglas Otis

Previous by Thread:

[ietf-dkim] draft-ietf-dkim-threats-00 Misstatement of the DKIM mechanism, Douglas Otis

Next by Thread:

Re: [ietf-dkim] draft-ietf-dkim-threats-00 Unreasonable estimate of impact from a highly probable exploit, Stephen Farrell

Indexes:

[Date] [Thread] [Top] [All Lists]