ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-dkim] multiple keys under same selector+domain?

2006-04-11 16:31:21
from [Michael Thomas] [Permanent Link] 
Jonathan Clark wrote:


My thought here was that the primary use of multiple signatures is for
rolling keys (and/or algorithms). 

The motivation is rolling algorithms, not keys. And that's _a_ reason,
but not the only reason.


You slap a new key under the existing
selector and sign messages with both keys, so preserving signature
validity for old messages. Doug points out that squeezing 2 keys into
one (TXT?) record may be a tight fit :-)


Selector namespace is cheap; there's just no motivation I've
seen to try to recycle it. Why even try?

                Mike
_______________________________________________
NOTE WELL: This list operates according to http://mipassoc.org/dkim/ietf-list-rules.html
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] multiple keys under same selector+domain?, Stephen Farrell
Next by Date:  Re: [ietf-dkim] Proposal: get rid of x=, Paul Hoffman
Previous by Thread:  Re[2]: [ietf-dkim] multiple keys under same selector+domain?, Jonathan Clark
Next by Thread:  Re: [ietf-dkim] multiple keys under same selector+domain?, Dave Crocker
Indexes:  [Date] [Thread] [Top] [All Lists]