ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Why are mail servers not also key servers?

2017-04-20 12:48:27
from [Doug Royer] [Permanent Link] 
On 04/20/2017 11:01 AM, Jon wrote:

On 20/04/2017 16:29, Yoav Nir wrote:
(lots snip)
This is why I think smtp should be extended. All your mail agents
support (E)SMTP and presumably they would all support an extension to
smtp. The private keys will need to be stored some how to allow for
multiple clients, but a key generated from user input could be used to
decrypt a stored copy of the private key.
You seem to be describing a configuration server. (I forget the RFC#, I think it was a Chris Newman one). A configuration server could store a BLOB of data that could be decrypted by a client that had the key.
I would like to see an extension so that the MUA could contact the destination server (perhaps their MX record host) and get a users PUBLIC key. Perhaps (just an idea - no screaming please) a new TXT record type that points to the domains PubKey server.
I think it is undisputed that the MX server would know which email recipients are valid for itself. Or if a proxy SMTP server, could relay the request to the real hidden SMTP server. 

As someone else pointed out, draft-moore-email-addrquery is a great start.



--

Doug Royer - (http://DougRoyer.US  http://goo.gl/yrxJTu )
DouglasRoyer(_at_)gmail(_dot_)com
714-989-6135

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Why are mail servers not also key servers?, Viktor Dukhovni
Next by Date:  Re: Why are mail servers not also key servers?, Doug Royer
Previous by Thread:  Re: Why are mail servers not also key servers?, Matthew Kerwin
Next by Thread:  Re: Why are mail servers not also key servers?, Rich Kulawiec
Indexes:  [Date] [Thread] [Top] [All Lists]