On 8/14/2010 8:50 PM, Daniel Black wrote:
I intially saw a need for a MUA considerations because:
* I still hope DKIM will help protect email identity
"email identity" is an ambiguous term.
All sorts of value-added enhancements might be possible, on top of DKIM, but
"protecting email identity" isn't really what DKIM is defined to do.
* end users rely, or should rely, on their MUA to present verified identity
information in an easily digestable way.
Human usability issues with respect to security is, at best, extremely poorly
understood. The state of the design art appears to have no idea what is
effective.
* MLMs break signatures and MUA will still need to present verified identity
As noted, you are seeking to have DKIM perform functions it was not designed to
perform. There should be no surprise that it falls shy of your desired mark.
d/
--
Dave Crocker
Brandenburg InternetWorking
bbiw.net
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html