ietf-smtp
[Top] [All Lists]

Re: I-D ACTION:draft-arun-ncc-smtp-02.txt

2005-04-14 06:34:07

In a company, a team of say 20 there could be 2 contracters who should not be given the details that are to be passed to the other 18, some company confidential data.

that's not a valid application for this, as any MTA that doesn't support the extension will leak the confidential data. if you really want to preserve confidential data, you don't trust it to the configuration of several different MTAs, even if they're all under your control. it's much easier and safer to send 18 separate copies, and/or to encrypt the message so that it can only be read by the holders of 18 public keys.

because of its inherently unreliable nature, ncc is really only useful in cases where not copying those recipients is a useful optimization but not required. e.g. duplicate suppression from mailing lists. but there are better ways to do duplicate suppression.