> I think if you have 100.000 email addresses in one domain, the chance > of collision would be pretty small. but non-zero. > > anyway, we will use base32 split encoding in the next version of the > draft.
What about the privacy? Leave it alone without thinking at all about privacy and say that other WGs are taking care of this so why we should bother outselves? Is it a right way to do this!? We all know that, if we are so optimistic and say that Dprive can come up with a good solution very quickly, it takes time that all systems implement and support it (if we say there will be no problem at all or any new attacks), We have seen how fast a security system is deployed and supported , let's not go so far and back to the history of DNSSEC... . To be realistic, this will result in either no implementation of this approach in mail system until the privacy is clear or not enabling this approach, although, it is there because it has even no weak privacy protection. Therefore, the old way of key exchange is preferable over this one. Best, Hosnieh _______________________________________________ dane mailing list [email protected] https://www.ietf.org/mailman/listinfo/dane
