On 7/15/2025 11:47 PM, Richard Clayton wrote:
The first thing to say is being able to move to new crypto algorithms is
a difficult practical problem and it's not just a case of copying
another protocols highly successful approach -- because there isn't much
(anything??) to copy!
Our approach has been to allow a DKIM2 header field to contain either
one or two signatures.
Since multiple, independent DKIM signatures are permitted, using
independent header fields, why is it not sufficient to merely have two,
independent signatures, by the same domain but using different algorithms?
d/
--
Dave Crocker
Brandenburg InternetWorking
bbiw.net
bluesky: @dcrocker.bsky.social
mast: @[email protected]
_______________________________________________
Ietf-dkim mailing list -- [email protected]
To unsubscribe send an email to [email protected]
