ietf-mailsig
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Good as the enemy of OK

2005-01-14 12:08:40
from [James Galvin] [Permanent Link]
--On Friday, January 14, 2005 9:55 AM -0800 Douglas Otis <dotis(_at_)mail-abuse(_dot_)org> wrote: 


While most domains would not need such a feature, for those domains that
have many accounts, this feature could prove useful.  Distributing keys
for every account would become rather costly.  DNS tends to use about 4
times the memory of the data stored to ensure fast responses.  Keeping
the DNS cache on a diet seems like a good idea, as it has a thyroid
problem.
But the key does not have to be per user. An originating site includes some kind of user identifier (in the simplest case this is probably an email address) that it understands and then the site applies the signature.
This makes DNS the ideal place to store the keys and it scales well, since the "site" is known by its domain. 

Jim
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Good as the enemy of OK, James M Galvin
Next by Date:  Re: MARID vs. MASS, John R Levine
Previous by Thread:  Re: Good as the enemy of OK, Douglas Otis
Next by Thread:  Re: Good as the enemy of OK, Douglas Otis
Indexes:  [Date] [Thread] [Top] [All Lists]