I think there are operational documents on key rotation and best practices. I think M3AAWG has such documents, however, my point is that this group should strive to design a protocol that makes life easier for all of us.
IETF security goals sometimes fails because operationally it is very heavy. From: Pete Resnick <resn...@episteme.net> Date: Thursday, November 7, 2024 at 09:18 To: Franck Martin <fmar...@linkedin.com> Cc: Bron Gondwana <br...@fastmailteam.com>, Murray S. Kucherawy <superu...@gmail.com>, ietf-dkim@ietf.org <ietf-dkim@ietf.org>, Wei Chuang <wei...@google.com>, Richard Clayton <rclay...@yahooinc.com> Subject: Re: [Ietf-dkim] PROPOSAL: reopen this working group and work on DKIM2 On 7 Nov 2024, at 16:26, Franck Martin wrote: > This charter looks very good, but.. I think it is missing to address > explicitly the following pain points: key rotation and cypher > upgrades. Cypher upgrades seems like a reasonable thing to mention in the charter, even though I'm pretty sure that's in everyone's mind already. Key rotation sounds like an operational issue, not a protocol issue. I suppose if someone wanted to write recommendations about how often to rotate keys and update your DNS would be an OK thing, but it doesn't seem to me this WG would be the right place to work on it. pr -- Pete Resnick https://www.episteme.net/ All connections to the world are tenuous at best
_______________________________________________ Ietf-dkim mailing list -- ietf-dkim@ietf.org To unsubscribe send an email to ietf-dkim-le...@ietf.org