On Fri 08/Aug/2025 02:20:28 +0200 Neil Jenkins wrote:
On Fri, 8 Aug 2025, at 08:39, Phillip Tao wrote:
However, I think DKIM can actually be split into two parts: the mechanical
part of how to canonicalize and sign a message, and how to transmit the key/
establish trust.
So, I propose that unobtrusive signatures actually be built on the first part
of that.
This makes a lot of sense to me.
DKIM1 is not inherently non-e2e. I just need my mailbox provider to publish my
public key for me. As long as only I know my private key, the signature can be
considered e2e. There's already software for DKIM verification on MUAs, but
not for signing.
The reasons for MIME wrapping are beyond me. Is it simply an attempt to
minimize tampering by intermediate hosts?
Best
Ale
--
_______________________________________________
Ietf-dkim mailing list -- [email protected]
To unsubscribe send an email to [email protected]
