On Fri, 16 Jul 2004, Shevek wrote:
Have the formats used by SRS and SES been considered here?
They are not designed for this purpose and so have a lot of irrelevant
features and wasted space. They do not allow for multiple cryptographic
algorithms, which I believe to be a requirement for Internet standards
(though I can't find the reference at the moment). They require the use of
callback verification to detect forgery, which does not scale well and is
not suitable for very widespread use on the Internet. Extensible crypto
would allow for the use of signatures verifiable by the recipient using a
public key obtained from the DNS, or per-user keys, or algorithm
replacement in case of compromise, etc.
Tony.
--
f.a.n.finch <dot(_at_)dotat(_dot_)at> http://dotat.at/
GERMAN BIGHT HUMBER: SOUTHERLY 3 OR 4, OCCASIONALLY 5. RAIN OR THUNDERY
SHOWERS. MODERATE OR GOOD, WITH FOG PATCHES.