spf-discuss
[Top] [All Lists]

RE: Domain Keys vs Sender Permitted From vs Sender Policy Framework

2004-06-03 09:43:22
David McNett wrote:
S/MIME signed mail is perfectly readable by 
users who use an MUA which is not aware of S/MIME. 

S/MIME mail that is signed, but not encrypted, is perfectly readable
by *most* MUAs if the "clear signing" technique is used (content-type
multipart/signed defined in RFC 2311).  Most MUAs will simply show the
digital signature as a file attachment and the rest of contents are
displayed as usual.

There are, however, some MUAs that get confused by the presence of
content-type multipart/signed.  Microsoft's Outlook Web Access v5.5
is notably one of them.

Nevertheless, S/MIME clear signing would seem to have a big advantage
over Domain Keys in that it is already understood by a large number
of existing MUAs and in many cases, is able to give the end recipient
an visual indication of whether the signature is valid or not.

Daryl Odnert
Tumbleweed Communications
Redwood City, California

-------
Sender Policy Framework: http://spf.pobox.com/

The Inbox Event at the Marriott San Jose features SPF.
   June 2: Email Accountability Symposium (free)
   June 3: SPF Strategy BOF (free) where industry will coordinate deployment 
timeline
   Times: 6:30pm - 8pm, both sessions.  http://www.inboxevent.com/

Archives at http://archives.listbox.com/spf-discuss/current/
To unsubscribe, change your address, or temporarily deactivate your 
subscription, 
please go to 
http://v2.listbox.com/member/?listname=spf-discuss(_at_)v2(_dot_)listbox(_dot_)com
<Prev in Thread] Current Thread [Next in Thread>
  • RE: Domain Keys vs Sender Permitted From vs Sender Policy Framework, Daryl Odnert <=