ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: AppsDir review of draft-ietf-repute-model-08

2013-08-30 18:24:49
from [Douglas Otis] [Permanent Link] 
Dear Tony,

Use of DKIM offers a very poor authentication example, since this draft makes 
the same errors made in RFC5863.  It is wrong to suggest the DKIM protocol 
permits associating a validated identifier to a message as stated in the 
Introduction.  This is the same erroneous conflation of a message fragment with 
that of a message.  In most cases, DKIM does not adequately protect message 
integrity as explained in 
http://tools.ietf.org/html/draft-otis-dkim-harmful-03.  In addition, DKIM can 
not authenticate who is accountable for having sent the message which makes it 
impossible to safely assign reputation.  As such, DKIM should never be referred 
to as a message authentication protocol.  StartTLS would represent a much 
better example. 

Regards,
Douglas Otis
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: AppsDir review of draft-ietf-repute-model-08, Tony Hansen
Next by Date:  Re: AppsDir review of draft-ietf-repute-model-08, Andrew Sullivan
Previous by Thread:  Re: AppsDir review of draft-ietf-repute-model-08, Tony Hansen
Next by Thread:  Re: AppsDir review of draft-ietf-repute-model-08, Andrew Sullivan
Indexes:  [Date] [Thread] [Top] [All Lists]