Please note that since this discussion the BSMTP document has come out as
RFC 2442.
so, if i understand the idea correctly, header protection can be had
by having mail clients support bsmtp processing:
sending side
1) create a message
2) create a bsmtp object out of the message (encapsulate)
3) encrypt (and optionally sign)
4) send the message
receiving side
4) receive the message
5) decrypt (and optionally verify signature)
6) extract (recreate) the original message from the bsmtp object
7) read as usual
does that sound about right?
Yes, except that the protection extends to the envelope when you use BSMTP.
If all you want to protect is the header it is easier to just use a
message/rfc822 MIME encapsulation.
Ned