RE: Fwd: Re: [ietf-dkim] I-D Action:draft-ietf-dkim-ssp-00.txt

ietf-dkim

RE: Fwd: Re: [ietf-dkim] I-D Action:draft-ietf-dkim-ssp-00.txt

2007-06-29 12:07:19

The downgrade attack is not addressed in the security recommendations.

Regardless of whether the group thinks that the attack is out of scope the 
group must either:

1) Provide a mechanism that allows the attack to be prevented.

2) Understand the problem well enough to write a security considerations 
section.


The first is much easier than the second.

_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
{Blocked Content} [ietf-dkim] I-D Action:draft-ietf-dkim-ssp-00.txt, Internet-Drafts Re: [ietf-dkim] I-D Action:draft-ietf-dkim-ssp-00.txt, Stephen Farrell Re: [ietf-dkim] I-D Action:draft-ietf-dkim-ssp-00.txt, Stephen Farrell [ietf-dkim] Re: I-D Action:draft-ietf-dkim-ssp-00.txt, Dave Crocker Message not available Fwd: Re: [ietf-dkim] I-D Action:draft-ietf-dkim-ssp-00.txt, Charles Lindsey Re: Fwd: Re: [ietf-dkim] I-D Action:draft-ietf-dkim-ssp-00.txt, stephen . farrell RE: Fwd: Re: [ietf-dkim] I-D Action:draft-ietf-dkim-ssp-00.txt, Hallam-Baker, Phillip <= Re: Fwd: Re: [ietf-dkim] I-D Action:draft-ietf-dkim-ssp-00.txt, Dave Crocker

Previous by Date:	[ietf-dkim] SSP Policy NOMAIL, Hallam-Baker, Phillip
Next by Date:	Re: [ietf-dkim] FW: draft-hallambaker-xptr-00, Douglas Otis
Previous by Thread:	Re: Fwd: Re: [ietf-dkim] I-D Action:draft-ietf-dkim-ssp-00.txt, stephen . farrell
Next by Thread:	Re: Fwd: Re: [ietf-dkim] I-D Action:draft-ietf-dkim-ssp-00.txt, Dave Crocker
Indexes:	[Date] [Thread] [Top] [All Lists]