ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-dkim] Re: 1368 straw-poll

2007-02-26 10:26:09
from [Mark Delany] [Permanent Link] 
Dave Crocker wrote:
The proposed mechanism incurs an additional lookup for every signed message.
Whatever algorithm policy you embed in a separate SSP can just as easily be embedded in the Selector of the weakened key.
But maybe that just means I don't get any of the discussion about downgrade attacks or weakened keys needing a separate SSP. As others have said TTL is irrelevant because they are always going to be many orders of magnitude smaller than the response time of human administrators. Heck most administrators haven't even heard of DKIM yet alone the discovery of any algorithmic weakness.
I was under the impression that a separate SSP can only add value for domains *not* verified by the signature. 


Mark.
_______________________________________________
NOTE WELL: This list operates according to http://mipassoc.org/dkim/ietf-list-rules.html
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: 1368 straw-poll : (was: Re: [ietf-dkim] Deployment Non-Scenario 7: Cryptographic Upgrade and Downgrade Attacks), Michael Thomas
Next by Date:  [ietf-dkim] Re: 1368 straw-poll :, Mark Delany
Previous by Thread:  Re: [ietf-dkim] Re: 1368 straw-poll, Stephen Farrell
Next by Thread:  [ietf-dkim] Re: 1368 straw-poll, Paul Hoffman
Indexes:  [Date] [Thread] [Top] [All Lists]