[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: The subject line leakage problem

To: ietf-smime@xxxxxxx
Subject: Re: The subject line leakage problem
From: Paul Hoffman / IMC <phoffman@xxxxxxx>
Date: Wed, 19 Dec 2001 11:59:28 -0500
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-smime/mail-archive/>
List-id: <ietf-smime.imc.org>
List-unsubscribe: <mailto:ietf-smime-request@imc.org?body=unsubscribe>
References: <>
Sender: owner-ietf-smime@xxxxxxxxxxxx

This is getting much more complicated than it needs to be, and is likely to break interoperability with non-enhanced clients.

The simplest thing to do is to say: - Senders should put the minimum that they want in the unprotected headers - Senders include as much as they want protected in a text/rfc822-header part at the beginning of a multipart/mixed message - Enhanced clients should display the message with the headers from the text/rfc822-header part moved to where the user thinks he/she sees the headers. In the case of headers that are in both in the 822 message and in the text/rfc822-header body part, the latter wins (because it is protected) - The moved-up headers may cause side-effects that the MUA should act on. For example, if the Cc: in the 822 headers is "bill@xxxxxxxxxxx" but the Cc: in the protected headers is "amy@xxxxxxxxxxx", the "reply to all" action should include amy but not include bill.

--Paul Hoffman, Director
--Internet Mail Consortium

Follow-Ups:
- Re: The subject line leakage problem
  - From: ned . freed

References:
- Re: The subject line leakage problem
  - From: Housley, Russ

Prev by Date: Re: Re(2): The subject line leakage problem
Next by Date: I-D ACTION:draft-ietf-smime-rfc2630bis-06.txt
Previous by thread: Re: The subject line leakage problem
Next by thread: Re: The subject line leakage problem
Index(es):
- Date
- Thread