[ietf-dkim] NEW ISSUE: limiting SSP to statements that inform
recipient about (potential) signer actions
deepvoice at gmail.com
Mon Dec 10 07:51:57 PST 2007
On Dec 10, 2007 10:26 AM, Charles Lindsey <chl at clerew.man.ac.uk> wrote:
> On Sun, 09 Dec 2007 17:00:36 -0000, Dave Crocker <dhc at dcrocker.net> wrote:
> > To the extent that the above is not sufficiently clear:
> > The SSP specification needs to be modified to remove all directions
> > for recipient actions, instead limiting itself to statements about the
> > actions of a potential signer.
> The specification needs to allow the signer to say what he would *like*
> the verifier to do.
+1 on the -1
I believe that this is an important part of SSP. It gives it sharp
teeth if the implementer so chooses. Something that has always been
lacking and sorely needed on the other specifications that many in
this group, including myself, have hashed out.
More information about the ietf-dkim