[ietf-dkim] DKIM Threat Assessment v0.02 (very rough draft)
Michael Thomas
mike at mtcc.com
Tue Aug 9 15:42:32 PDT 2005
Dave Crocker wrote:
>> If I understand your goals correctly, you see DKIM mainly defining the
>> domain owner the accountable entity for messages sent from that domain
>> versus the author/sender of the message.
>
>
> This is precisely what DKIM does. It is the domain administrator who defines
> the DNS records used by DKIM and DKIM's granularity of the validated identity is
> a domain name.
That is not correct. The local part of the i= is intended to
provide a binding to the local part of outside origination
headers, not just the domain part. Which is why it is,
in fact, a primary goal.
One only has to look at Yahoo's web mail interface to
understand what significance they place on that binding.
Mike
More information about the ietf-dkim
mailing list