ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-dkim] Proposal for specifying syntax and semantics for multiple signatures

2006-03-31 15:30:58
from [Arvel Hathcock] [Permanent Link] 
> The goal is to ensure when there are two signatures added to the
> message, an attacker does not toss out the stronger signature in order
> to exploit the weaker signature added within a transition period.
I think that we should leave this to the verifier. If the verifier is uncomfortable accepting a "weaker" signature then by all means let the verifier stop doing so. Is there a problem with that approach that I can't see? 

--
Arvel



_______________________________________________
NOTE WELL: This list operates according to http://mipassoc.org/dkim/ietf-list-rules.html
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] Proposal for specifying syntax and semantics for multiple signatures, Arvel Hathcock
Next by Date:  Re: [ietf-dkim] Proposal for specifying syntax and semantics for multiple signatures, ned+dkim
Previous by Thread:  Re: [ietf-dkim] Proposal for specifying syntax and semantics for multiple signatures, Douglas Otis
Next by Thread:  Re: [ietf-dkim] Proposal for specifying syntax and semantics for multiple signatures, Douglas Otis
Indexes:  [Date] [Thread] [Top] [All Lists]