ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-dkim] draft-vesely-dkim-joint-sigs

2010-09-16 00:37:25
from [Alessandro Vesely] [Permanent Link] 
On 16/Sep/10 01:31, Hector Santos wrote:

Alessandro Vesely wrote:

 Abstract:
 DKIM Joint Signatures provides a means to limit the responsibility of
 a message that implied by signing it, and possibly transfer the
 responsibility to a third party.

 http://www.ietf.org/id/draft-vesely-dkim-joint-sigs-00.txt


The I-D lacks examples to better understand this proposal.

I see these generic possibilities:

First party Example:

     From: user(_at_)example(_dot_)com
     DKIM-Required: example.com
     DKIM-Signature:  d=example.com h="From:DKIM-Required"


Yes, that's possible, but seems useless.  What I've been thinking about is

        From: user(_at_)example(_dot_)com
        DKIM-Required: list.example
        DKIM-Signature: d=example.com h="From:DKIM-Required"

If it were agreed that a signature may be not valid unless 
countersigned by the recipient, the risk of replay attacks would be 
greatly diminished.
_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] RFC4871 5322.From Binding - Proposal to relax it., Scott Kitterman
Next by Date:  Re: [ietf-dkim] RFC4871 5322.From Binding - Proposal to relax it., Murray S. Kucherawy
Previous by Thread:  [ietf-dkim] draft-vesely-dkim-joint-sigs, Hector Santos
Next by Thread:  Re: [ietf-dkim] draft-vesely-dkim-joint-sigs, Hector Santos
Indexes:  [Date] [Thread] [Top] [All Lists]