ietf-mxcomp
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Caller-ID group is hiring!

2004-05-04 02:50:51
from [Dave Crocker] [Permanent Link] 

Margaret,




Any reasonable authentication scheme would have shown either where the
message actually came from or who actually authored.

Either type of information would have made pretty clear that this did
not come from the purported author.


MO> I have a somewhat stricter definition of a reasonable authentication scheme:

I did not define 'reasonable authentication scheme".  I pointed out
that anything qualifying as one would cover the particular spoof that
was demonstrated.

In fact, some pretty weak schemes will cover this particular spoof.

And therein lies an important point we need to keep in mind, in these
discussions:  We should be careful how heavyweight and cumbersome the
mechanisms are.

We are only needing to protect against transit spoofing.


d/
--
 Dave Crocker <mailto:dcrocker(_at_)brandenburg(_dot_)com>
 Brandenburg InternetWorking <http://www.brandenburg.com>
 Sunnyvale, CA  USA <tel:+1.408.246.8253>, <fax:+1.866.358.5301>
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • Re: Caller-ID group is hiring!, Dave Crocker <=
Previous by Date:  Re: CSV (Crocker's draft) good! (evaluation, big suggestion), Philip Miller
Next by Date:  Re: CSV (Crocker's draft) good! (evaluation, big suggestion), Douglas Otis
Previous by Thread:  Semantics and Syntax, wayne
Next by Thread:  draft-crocker-marid-smtp-validate-00.txt, Tony Finch
Indexes:  [Date] [Thread] [Top] [All Lists]