-----Original Message-----
From: Darren Harter <dharter(_at_)cesg(_dot_)gov(_dot_)uk>
To: ietf-smime(_at_)imc(_dot_)org <ietf-smime(_at_)imc(_dot_)org>
Date: Friday, November 06, 1998 7:00 PM
Subject: CMS: Algorithm Dependancy Issues
I'd like to raise an issue that is giving me some problems.
Currently, the CMS spec describes a number of algorithms for both
authentication and confidentiality, mandating some of them and
leaving others optional.
I believe the right algorithms etc are mandated for S/MIME over the
Internet.
But, as CMS is intended for use outside of S/MIME as a 'protocol
bucket' by other applications that may not wish (or may no be able)
to support the mandated algorithm set, surely the best place to
specify and mandate algorithms is in the MSG spec.
Wouldn't that endanger interoperability between CMS-compliant agents sitting
on the two sides of the fence, and exchanging mail through a gateway?
Enzo