Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signa

ietf-dkim

Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks

2006-01-30 16:00:08



Hector Santos wrote:

----- Original Message -----
From: "Stephen Farrell" <stephen(_dot_)farrell(_at_)cs(_dot_)tcd(_dot_)ie>
To: "Hector Santos" <hsantos(_at_)santronics(_dot_)com>

Note - I don't think we should get into solutions in the threats
draft, though the considerations from Tony's mail should come back
up for discussion later.

Unbelievable. :-)


Believe it:-) But I can see how "get into" above might be
misunderstood.

> The TA is full of functional recommendations.

Sure. I'd have no problem if it said "one possibility is to
include the policy assertion alongside the public key and
require some restriction as to how domains map" or whatever
is the right thing to say.

What I meant was that this (document) isn't the time (place)
to decide details of such e.g whether an actual assertion
or a pointer would be alongside.

So I don't think we're really disagreeing.

Stephen.

_______________________________________________
ietf-dkim mailing list
http://dkim.org

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Hector Santos Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Tony Hansen Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, william(at)elan.net Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: InconsistentSignature vs Policy Attacks, Hector Santos Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Dave Crocker Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: InconsistentSignature vs Policy Attacks, Hector Santos [ietf-dkim] Re: New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Frank Ellermann Re: [ietf-dkim] Re: New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Douglas Otis Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Stephen Farrell Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Hector Santos Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Stephen Farrell <= Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Jim Fenton [ietf-dkim] OT o=. (was: New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks), Frank Ellermann Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Dave Crocker Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Douglas Otis Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Hector Santos Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Stephen Farrell

Previous by Date:	Re: [ietf-dkim] When will we know the Threat Analysis document iscomplete, Hector Santos
Next by Date:	RE: [ietf-dkim] When will we know the Threat Analysis document iscomplete, Hallam-Baker, Phillip
Previous by Thread:	Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Hector Santos
Next by Thread:	Re: [ietf-dkim] New Issue: 4.2 needs new Attack Item: Inconsistent Signature vs Policy Attacks, Jim Fenton
Indexes:	[Date] [Thread] [Top] [All Lists]