-----Original Message-----
From: Taweesak Chairatanayut [mailto:pok(_at_)nectec(_dot_)or(_dot_)th]
Sent: Friday, February 26, 1999 1:41 AM
To: ietf-smime(_at_)imc(_dot_)org
Subject: Question about security of header.
According to rfc of S/MIME V.2.0, i have a question
about header.
How can i be so sure that the header of e-mail didn't be
changed because
from S/MIME V.2.0 i couldn't find that header can be
authenticated or not
( i think no, right ?). Do you have any idea of header
authentication ?
Please advise.
The outer RFC822 headers (Received, To, From, Subject, etc.) are not
protected by the S/MIME v2 or v3 profile.
A way to do header authentication is to wrap an entire message/rfc822 in
SignedData.
Blake
--
Blake C. Ramsdell
Worldtalk Corporation
For current info, check http://www.deming.com/users/blaker
Voice +1 425 882 8861 x103 Fax +1 425 882 8060