Sam Hartman wrote:
I was thinking that for a per-domain key--a key allowed to sign any
local part--the signature itself could indicate whether the local part
was in fact checked.
I tend to be suspicious of any positive assertion by the signer on their
own behalf, regardless of whether it is part of the key or part of the
signature. I'm also not sure how this indication would be used. Would
the verifier or recipient do anything different depending on whether or
not the local part was said to have been checked?
On the other hand, would it dilute the accountability of the signer to
allow it not to say it checked the local part? I would rather that the
signer do whatever diligence it needs to do to sign the message without
such a caveat.
-Jim