ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks

2006-02-16 11:04:41
from [Dave Crocker] [Permanent Link] 


Mark Delany wrote:

On Thu, Feb 16, 2006 at 08:20:57AM -0800, Dave Crocker allegedly wrote:
I keep coming back to the very limited goal of DKIM and wondering whether the concern about a downgrade attack isn't just a little too esoteric for that goal.
It happens that it also solves the agility requirement too.
I think the case for having agility has been well and strongly made, and I certainly was not challenging that.
Having an agility approach that we like more than any other approach, and that just happens to be robust against downgrade attack, is different than focusing on the concern for downgrade attack. 

I was hearing the latter, not the former.
I am belaboring this issue because of the tendency that is true for all engineering, but particularly true for security engineering: The tendency to worry more about every possible problem than any real need. 

d/
--

Dave Crocker
Brandenburg InternetWorking
<http://bbiw.net>
_______________________________________________
NOTE WELL: This list operates according to http://dkim.org/ietf-list-rules.html
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Stephen Farrell
Next by Date:  Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Mark Delany
Previous by Thread:  Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Mark Delany
Next by Thread:  Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Mark Delany
Indexes:  [Date] [Thread] [Top] [All Lists]