RE: threat modeling & use cases (was RE: [ietf-dkim] Tracing SSP'sparadi

ietf-dkim

RE: threat modeling & use cases (was RE: [ietf-dkim] Tracing SSP'sparadigm change

2007-12-12 18:38:14

Steve Atkins wrote:

The first step would be a group consensus on what the threats are
("what SSP is supposed to be for"), or at least a superset of what
most people think.


Actually, I think that's the LAST step.  My hypothesis is that different
types of signers and/or verifiers (different use cases) perceive
different threats.


Hector Santos wrote:

When I wrote the (now expired I-D) I-D DSAP (DKIM Sender Authorization
Protocol) draft:

http://www.isdg.net/public/ietf/drafts/draft-santos-dkim-dsap-00.html
http://www.isdg.net/public/ietf/drafts/draft-santos-dkim-dsap-00.txt

the main reason was to officially highlight the concerns and hopefully
they would be considered for SSP.


Thanks, this'll be a great starting point.  Now I just hope I can find
the time....


_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [ietf-dkim] Tracing SSP's paradigm change, (continued) Re: [ietf-dkim] Tracing SSP's paradigm change, Scott Kitterman RE: [ietf-dkim] Tracing SSP's paradigm change, Patrick Peterson Re: [ietf-dkim] Tracing SSP's paradigm change, Hector Santos Re: [ietf-dkim] Tracing SSP's paradigm change, Steve Atkins Re: [ietf-dkim] Tracing SSP's paradigm change, Hector Santos threat modeling & use cases (was RE: [ietf-dkim] Tracing SSP's paradigm change, J D Falk Re: threat modeling & use cases (was RE: [ietf-dkim] Tracing SSP's paradigm change, Steve Atkins Re: threat modeling & use cases (was RE: [ietf-dkim] Tracing SSP's paradigm change, Scott Kitterman Re: threat modeling & use cases (was RE: [ietf-dkim] Tracing SSP's paradigm change, Steve Atkins Re: threat modeling & use cases (was RE: [ietf-dkim] Tracing SSP's paradigm change, Dave Crocker RE: threat modeling & use cases (was RE: [ietf-dkim] Tracing SSP'sparadigm change, J D Falk <= Re: threat modeling & use cases (was RE: [ietf-dkim] Tracing SSP'sparadigm change, Steve Atkins RE: threat modeling & use cases (was RE: [ietf-dkim] TracingSSP'sparadigm change, J D Falk Re: threat modeling & use cases (was RE: [ietf-dkim] Tracing SSP'sparadigm change, Jim Fenton Re: threat modeling & use cases (was RE: [ietf-dkim] Tracing SSP'sparadigm change, Dave Crocker Re: threat modeling & use cases (was RE: [ietf-dkim] Tracing SSP's paradigm change, Hector Santos Re: [ietf-dkim] Tracing SSP's paradigm change, Wietse Venema Re: [ietf-dkim] Tracing SSP's paradigm change, Michael Thomas Re: [ietf-dkim] Tracing SSP's paradigm change, Steve Atkins Re: [ietf-dkim] Tracing SSP's paradigm change, Dave Crocker Re: [ietf-dkim] Tracing SSP's paradigm change, Jon Callas

Previous by Date:	RE: [ietf-dkim] NEW ISSUE: Limit the application of SSP to unsignedmessages, ned+dkim
Next by Date:	RE: [ietf-dkim] NEW ISSUE: SSP threats analysis needed, J D Falk
Previous by Thread:	Re: threat modeling & use cases (was RE: [ietf-dkim] Tracing SSP's paradigm change, Dave Crocker
Next by Thread:	Re: threat modeling & use cases (was RE: [ietf-dkim] Tracing SSP'sparadigm change, Steve Atkins
Indexes:	[Date] [Thread] [Top] [All Lists]