Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt

ietf-dkim

Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt

2008-02-01 20:35:04

Douglas Otis wrote:

On Feb 1, 2008, at 3:18 PM, Hector Santos wrote:
IMHO, unless the SSP draft is changed to comply with RFC 4871, the WGshould consider adopting the ASP draft instead.
First, I don't agree that SSP did not comply with RFC 4871.
No. RFC 4871 does not comply with SSP.


How so?

From my standpoint, ASP/SSP-02 both provided unprotected considerationsin DKIM-BASE.

ASP::DISCARDABLE completely changes the semantics of DKIM-BASE failuresstate change to "no signature" to one where a failed signature exist.

Likewise ASP::ALL offers no protection against fraudulent 3rd partysigners. This is not what I call adding a SECURITY WRAPPER around theDKIM-BASE signing expectations whether forged 1st or 3rd party.


--
HLS

_______________________________________________

NOTE WELL: This list operates according tohttp://mipassoc.org/dkim/ietf-list-rules.html

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
{Blocked Content} [ietf-dkim] I-D Action:draft-ietf-dkim-ssp-02.txt, Internet-Drafts [ietf-dkim] draft-ietf-dkim-ssp-02.txt, Douglas Otis Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt (issue 1519?), Jim Fenton Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt (issue 1519?), Douglas Otis Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt (issue 1519?), Jim Fenton Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt (issue 1519?), Douglas Otis Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt, Hector Santos Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt, Douglas Otis Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt, Hector Santos Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt, Hector Santos <= Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt, Eliot Lear Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt, Douglas Otis Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt, Hector Santos Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt, Douglas Otis Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt, Hector Santos Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt ASP/SSP section 2.8, Douglas Otis Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt ASP/SSP section 2.8, Hector Santos Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt Author Signature Definition, Douglas Otis RE: [ietf-dkim] draft-ietf-dkim-ssp-02.txt ASP/SSP section 2.8, MH Michael Hammer (5304) Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt ASP/SSP section 2.8, Hector Santos

Previous by Date:	Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt and ASP, Hector Santos
Next by Date:	Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt, Eliot Lear
Previous by Thread:	Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt, Hector Santos
Next by Thread:	Re: [ietf-dkim] draft-ietf-dkim-ssp-02.txt, Eliot Lear
Indexes:	[Date] [Thread] [Top] [All Lists]