On 4/23/2025 4:01 AM, John Levine wrote:
It appears that Dave Crocker <[email protected]> said:
3. The preface to the conclusion text you offered is that it is
applicable ONLY AFTER trying the first path.
We did that, it's called DKIM.
sigh. that nicely, and very completely, misses my point .
The combination of things we want to do in DKIM2 or EKIM or whatever we call it
provide much stronger assertions to message recipients than DKIM does.
Please point to specific, detailed documentation that summarizes these
'stronger assertions'.
I do not
think it makes sense to try to pick them apart, since they're designed to work
together, a chain of signatures linked via the envelope addresses and the
modification algebra.
Please explain what it is that makes these other changes not work with this?
btw, in your concern for the charter you seem to have missed, "The
working group will prefer a result that is incremental to the deployed
ecosystem."
While there are certainly syntactic ways to squash this into an existing DKIM
signature, the semantics are very different, "the hash matched" vs "the hash
matched and the envelope chain matched and the modification undo matched all the
previous signature hashes."
So, "the hash matched" means two different things, depending on whether
all that other baggage is attached?
Please explain, with specifics. These assertions by authority are a bit
vague.
With only one kind of signature you can't tell what
it means without a lot of kludgy heuristics.
"one kind"? whatever does that mean?
If the old and new signatures are
different, there's no question what each one means.
old and new? what are you referring to?
While I realize you probably disagree with this, I think we get to try it and if
we fail, we fail.
right. because it is not as if the effort costs anything in expensive
engineering resources, never-mind strategic opportunity cost And it is
not as if making email more rigid is going to have any negative
effects. So what you've said isn't cavalier at all.
d/
--
Dave Crocker
Brandenburg InternetWorking
bbiw.net
bluesky: @dcrocker.bsky.social
mast: @[email protected]
_______________________________________________
Ietf-dkim mailing list -- [email protected]
To unsubscribe send an email to [email protected]
