[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: MASS/DKIM BOF Summary

To: "IETF MASS WG" <ietf-mailsig@xxxxxxx>
Subject: Re: MASS/DKIM BOF Summary
From: wayne <wayne@xxxxxxxxxxx>
Date: Sat, 06 Aug 2005 17:59:39 -0500
In-reply-to: <> (Phillip Hallam-Baker's message of "Fri, 5 Aug 2005 13:52:47 -0700")
List-archive: <http://www.imc.org/ietf-mailsig/mail-archive/>
List-id: <ietf-mailsig.imc.org>
List-unsubscribe: <mailto:ietf-mailsig-request@imc.org?body=unsubscribe>
Mail-copies-to: nobody
References: <>
Reply-to: "IETF MASS WG" <ietf-mailsig@xxxxxxx>
Sender: owner-ietf-mailsig@xxxxxxxxxxxx
User-agent: Gnus/5.1007 (Gnus v5.10.7) XEmacs/21.4 (Jumbo Shrimp, linux)

In <198A730C2044DE4A96749D13E167AD375A29FE@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx> "Hallam-Baker, Phillip" <pbaker@xxxxxxxxxxxx> writes:

> The limited security assurances provided by S/MIME are the result of the

Did you mean DKIM here instead of S/MIME?

> limitations of DNS as a key distribution mechanism. Defining the
> interfaces to existing PKI work such as PKIX and XKMS is all that is
> required to provide the type of end-to-end security assurances and
> persistent signature guarantees that S/MIME is intended to provide.


If you didn't mean DKIM, could you please explain why S/MIME has
limited security assurances?

/me is confused



> The likelihood that DKIM will replace the S/MIME signature component
> does not however mean that S/MIME supporters should see it as a threat,
> [...]
>
> There is a potential win-win situation here, if we are prepared to look
> at the bigger picture.

Agreed.


-wayne

References:
- RE: MASS/DKIM BOF Summary
  - From: Hallam-Baker, Phillip

Prev by Date: Re: replay attacks, was Re: revised Proposed Charter
Next by Date: Re: ] Replay attacks and ISP business models
Previous by thread: RE: MASS/DKIM BOF Summary
Next by thread: Re: MASS/DKIM BOF Summary
Index(es):
- Date
- Thread