On Jan 6, 2006, at 5:40 AM, Eliot Lear wrote:

Oddly I think we are agreeing, so perhaps we're both going in the wrong

way ;-)  I thought the point was to bound DKIM's capability.  On the

other hand, one could imagine a strict requirement for domain assignment

in some TLDs (perhaps this is already the case with .gov?).  Regardless,

absent that level of authentication between the registrar and the domain

"owner" you're left with reputation services...


Actually, there are TLD registries that do have registration rules.  This is true of many ccTLDs and some of the sTLDs (sponsored TLDs).  But the vast majority of domain registrations are in TLDs that have no registration rules of the type being discussed here.

To say:

DKIM's ability to identify a domain owner is [also] bounded by
whatever checks a registration authority imposes.

could be read to mean some domain registration rules can be counted upon for this purpose.  Practically speaking, I don't think this is true at all.

-andy
_______________________________________________
ietf-dkim mailing list
http://dkim.org

Reply via email to