DKIM Security Concerns
draft-otis-dkim-security-concerns-01
| Document | Type |
Expired Internet-Draft
(individual)
Expired & archived
|
|
|---|---|---|---|
| Author | Douglas Otis | ||
| Last updated | 2006-06-27 (Latest revision 2009-03-26) | ||
| RFC stream | (None) | ||
| Intended RFC status | (None) | ||
| Formats | |||
| Stream | Stream state | (No stream defined) | |
| Consensus boilerplate | Unknown | ||
| RFC Editor Note | (None) | ||
| IESG | IESG state | Expired | |
| Telechat date | (None) | ||
| Responsible AD | (None) | ||
| Send notices to | (None) |
This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:
Abstract
This document describes a few security concerns remaining within the working group draft of the DKIM base document. As the base document is a work-in-progress, some issues may have been already resolved. As with many protocols, accommodations for convenience are balanced against possible negative security repercussions. This draft attempts to expand upon some of these repercussions. In addition, some threat scenarios may have been considered too improbable to warrant the inclusion of mechanisms exceeding prior strategies. This draft attempts to justify added precaution. And lastly, some considerations may have neglected a transformation occurring with the display of the email-address localpart and domain impacting a recipient's recognition. This draft offers minor remedies for these security related issues.
Authors
(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)