ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-dkim] multiple keys under same selector+domain?

2006-04-11 17:55:41
from [Dave Crocker] [Permanent Link] 



Well, you may want to sign twice for an extended period, say if
sig1 is rsa-sha1 and sig2 is rsa-sha256 and it takes a year or more
before you're confident that a sufficient number of peers have
deployed sha256 verifiers.
This presumes that a signature is expected to validate a year after it was created. Since DKIM is for transit, why would anyone expect a validation to occur that far into the future? 

d/
--

Dave Crocker
Brandenburg InternetWorking
<http://bbiw.net>
_______________________________________________
NOTE WELL: This list operates according to http://mipassoc.org/dkim/ietf-list-rules.html
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] Proposal: get rid of x=, Dave Crocker
Next by Date:  Re: [ietf-dkim] Proposal: get rid of x=, John L
Previous by Thread:  Re: [ietf-dkim] multiple keys under same selector+domain?, Stephen Farrell
Next by Thread:  Re: [ietf-dkim] multiple keys under same selector+domain?, Mark Delany
Indexes:  [Date] [Thread] [Top] [All Lists]