[Asrg] where the message originated
Dave CROCKER
dhc at dcrocker.net
Mon Jan 12 08:27:20 PST 2009
Steve Atkins wrote:
> On Jan 12, 2009, at 4:44 AM, Alessandro Vesely wrote:
>> Hm.. I'm not much into DKIM. It technically allows to sign false
>> identities, but doesn't (or shouldn't) it semantically imply that the
>> signers must have some (possibly small but still positive) degree of
>> trust that what they sign is correct?
>
> No. The signature only means that the message you received was the one
> signed by the signing identity.
Not quite right. Or rather, not quite complete. And I'm compelled to pick this
nit, since it is fundamental to discussion about DKIM's purpose.
What you've described is a data integrity function. Yes, DKIM performs that on
the portions of the message it lists in the DKIM-Signature: header field.
However, data integrity is a side-effect of DKIM and not it's actual purpose.(*)
It's purpose is: "DKIM allows an organization to take responsibility for
transmitting a message, in a way that can be validated by a recipient. "
So the requirement on the signer is to choose naming granularity and use that
will provide the recipient with a stable label of a message stream.
The receiver is supposed to take the identifier being proffered by the signer
and run it through an assessment process.
Presumably, a fake or transient or new identifier is likely to get far less
trust than one with a track-record. As noted, the intended benefit of DKIM is
across a message stream, with the identifier being used to label that stream
consistently.
d/
(*) In fact, one can argue that DKIM doesn't perform data integrity all that
well, to which the response is that that's ok, it does it well enough for
validating the use of the identifier.
--
Dave Crocker
Brandenburg InternetWorking
bbiw.net
More information about the Asrg
mailing list