Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection again

ietf-dkim

Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks

2006-02-16 09:27:49

Folks,

If you can't rank algorithms, is there any meaningful concept of a
"downgrade attack"?

I'm sort of wondering though if Mark's problem here might be just as
easily solved by having a "current"/"next" kind of routine. That is,
only allow two in play at any one time, ...

I keep coming back to the very limited goal of DKIM and wondering whether theconcern about a downgrade attack isn't just a little too esoteric for that goal.

Besides that presumably, having multiple signature versions, as discussed here,is only for transition times.

Do we really need to engineer such fine-grained mechanisms for protectionagainst attacks during limited windows of mis-opportunity, for a mechanism thatis only trying to aid in determining whether to deliver a message?


d/

--

Dave Crocker
Brandenburg InternetWorking
<http://bbiw.net>
_______________________________________________

NOTE WELL: This list operates according tohttp://dkim.org/ietf-list-rules.html

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, (continued) Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Eliot Lear Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Douglas Otis [ietf-dkim] Supporting alternate algorithms, Dave Crocker [ietf-dkim] Re: Supporting alternate algorithms, Stephen Farrell Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Eric Allman Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Stephen Farrell Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Arvel Hathcock [ietf-dkim] Re: New Issue: Base: Upgrade indication and protection against downgrade attacks, Frank Ellermann Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Stephen Farrell Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Michael Thomas Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Dave Crocker <= Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Steve Atkins Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Dave Crocker Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Stephen Farrell Message not available Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Dave Crocker Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Stephen Farrell Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Mark Delany Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Dave Crocker Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Mark Delany Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Dave Crocker Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Douglas Otis

Previous by Date:	Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Michael Thomas
Next by Date:	Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Steve Atkins
Previous by Thread:	Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Michael Thomas
Next by Thread:	Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Steve Atkins
Indexes:	[Date] [Thread] [Top] [All Lists]