On 3/2/2016 1:35 AM, Stephen Farrell wrote:
LURK is an IETF mailing list that's discussing developing a
solution to the "offload TLS without giving the CDN my private
key" problem.
The premise seems to be that there is a single private key.
DKIM permits an arbitrary of private keys to be associated with the
domain name. So assigning one solely for use by a third-party -- and
deciding when to terminate it -- is convenient and carries no effect on
other uses.
d/
--
Dave Crocker
Brandenburg InternetWorking
bbiw.net
_______________________________________________
NOTE WELL: This list operates according to
http://mipassoc.org/dkim/ietf-list-rules.html