Having an agility approach that we like more than any other approach, and that
just happens to be robust against downgrade attack, is different than focusing
on the concern for downgrade attack.
Right. There are any number of reasons why we may have to change
algs. Security attacks, costs, IP claims...
So forgive me for being so dense -- even though I assume folks are used to that
by now -- but DKIM already supports multiple signatures (including permitting
alternate algorithms).
So I am now entirely unclear what change is needed and what problem is being
pursued, by the current thread.
d/
--
Dave Crocker
Brandenburg InternetWorking
<http://bbiw.net>
_______________________________________________
NOTE WELL: This list operates according to
http://dkim.org/ietf-list-rules.html