[ietf-dkim] RFC4871bis - whether to drop -- k: Key type
Dave CROCKER
dhc at dcrocker.net
Tue Jun 2 04:17:42 PDT 2009
Eliot Lear wrote:
> ... you do not see a benefit in stating the algorithm in the key
> record when it has already been stated in the header, that perhaps there
> is some nebulous potential downgrade attack. Is that right?
Yes.
And it's not "the" algorithm in the DNS record; it's a list of possible
algorithms. The list does not help the receiver know which algorithm is used
for a particular message.
d/
--
Dave Crocker
Brandenburg InternetWorking
bbiw.net
More information about the ietf-dkim
mailing list