A standard business letter has "From:" and "To:" addresses. It has a date. It has a "Dear:", showing also (perhaps) who it is for. It has a "Yours:" showing (perhaps) a relationship between the correspondents. It has a typed name showing whose name it is sent in, and it has a signature which authenticates _all_ of these. It has these things because long experience shows that it needs them, experience gained from disputes and court cases. An electronic business letter should have the same things. "Dear:" has gone by the boards in email, to my personal regret, but there is no excuse for allowing e-mail without the "to" address being authenticated by the signature. It is an elementary failure of protocol design. -- Peter --------------------------------------------------------------------- The Cryptography Mailing List Unsubscribe by sending "unsubscribe cryptography" to [EMAIL PROTECTED]
- Re: crypto flaw in secure mail standards Ian BROWN
- Re: crypto flaw in secure mail standards Derek Atkins
- Re: crypto flaw in secure mail standards dmolnar
- Re: crypto flaw in secure mail standards Jeffrey I. Schiller
- Re: crypto flaw in secure mail standards John Kelsey
- Re: crypto flaw in secure mail standards Peter Gutmann
- Re: crypto flaw in secure mail standards Enzo Michelangeli
- Re: crypto flaw in secure mail standards P.J. Ponder
- Re: crypto flaw in secure mail standards Greg Broiles
- Re: crypto flaw in secure mail standards Peter Fairbrother
- Re: crypto flaw in secure mail standards Bill Frantz
- Re: crypto flaw in secure mail standards lcs Mixmaster Remailer
- Re: crypto flaw in secure mail standards Enzo Michelangeli
- Re: crypto flaw in secure mail standards Ian BROWN
- Re: crypto flaw in secure mail standards Ben Laurie
- Re: crypto flaw in secure mail standards James M Galvin
- non-repudiation, was Re: crypto flaw in secure... Greg Broiles
- Re: non-repudiation, was Re: crypto flaw in se... Rodney Thayer
- Re: crypto flaw in secure mail standards Charlie_Kaufman
