ietf
[Top] [All Lists]

Re: dane-openpgp 2nd LC resolution

2016-03-13 18:29:22
On Sun, 13 Mar 2016, John C Klensin wrote:

-07 was actually more clear about the issues with that than -08 is,


The change between 07 and 08 was by direction of the AD. So the author
and the AD have tried to write text that would resolve your issue. There
is really only one person left that can write text that you will agree
with, and that is you.

but neither goes far enough, IMO, in detailing the risks that the
community perfectly well knows about.

Note again that the "risks" are:

1) email being sent to the intended user in the clear like it happens now.
2) email being sent to the wrong user encrypted to the wrong user's key,
   which is not as bad as being sent in the clear like it happens now.

Paul