On 6/9/2025 8:30 AM, Alessandro Vesely wrote:
Here DKOR is going to differ from DKIM2 as the older signatures, once broken, can no longer be verified. DKOR is more similar to ARC in this respect.
I don't understand this assessment, but suspect it comes from trying to compare all of DKIM2 with DKOR, where DKOR is actually only comparable to a component of DKIM2.
It's like saying that an aircraft has engineX and someone suggests instead using engineY, but then evaluating the choice by comparing the entire aircraft against engineY.
This seems to be another example of the problem with calling it DKIM2, since it has a much, much broader scope that DKIM. And in fact, it's details that fall within the scope of DKIM itself are relatively minor.
d/ -- Dave Crocker Brandenburg InternetWorking bbiw.net bluesky: @dcrocker.bsky.social mast: @[email protected]
_______________________________________________ Ietf-dkim mailing list -- [email protected] To unsubscribe send an email to [email protected]
