ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-dkim] Output summary - proposing ODID "Originating Domain Identity"

2011-05-04 13:44:10
from [Hector Santos] [Permanent Link] 
Hector Santos wrote:



Murray wrote:
This is completely appropriate in another way: The SDID from a valid 
signature is the only thing that DKIM "proves".


Ok, very good. It tells you the payoff value for SDID and its ok, to say 
its a mandatory identity receivers to look at. but its should be the 
exclusive one highlighted.


Sorry, I read you wrong!  if you said:

    The SDID from a valid signature is the only thing that DKIM
    provides for TRUST assessment.

Then it is correct.  But it is not the only thing that DKIM proves and
trying to mandate this solve requirement on receivers is completely
inappropriate.

Now if we wish to be really truly DKIM complete:

    The AUID MAY be passed to Trust Assessors as well.

    The ODID MAY be used in advanced identity assessors such as
    Checking Signing Practices [RFC4686, RFC5595, RFC5016, RFC5617].


-- 
Hector Santos, CTO
http://www.santronics.com
http://santronics.blogspot.com


_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] Output summary - proposing ODID "Originating Domain Identity", Murray S. Kucherawy
Next by Date:  Re: [ietf-dkim] Output summary - proposing ODID "Originating Domain Identity", Hector Santos
Previous by Thread:  Re: [ietf-dkim] Output summary - proposing ODID "Originating Domain Identity", Hector Santos
Next by Thread:  Re: [ietf-dkim] Output summary - proposing ODID "Originating Domain Identity", Murray S. Kucherawy
Indexes:  [Date] [Thread] [Top] [All Lists]