On 23/10/13 19:18, Dave Crocker wrote:
On 10/23/2013 2:13 PM, Noel Torres wrote:
I think it would be possible, and even easy for the developers, to
program an extension to SMTP in which servers use OpenPGP among them,
independently of any TLS/SSL usage.
Why: It helps stopping spam because the receiver server can trust the
identity of the sender, and it helps avoiding wiretapping.
Please explain it's superiority over DKIM and SPF and DMARC.
d/
Hi Dave
In short, DKIM does not avoid wiretapping on itself, SPF does not,
either, nor DMARC.
My idea is that server2server communication is signed and ecrypted using
OpenPGP (which can be done on the fly without great changes to current
Internet structure). e-mails with bad server signature will be rejected
before they are transmitted, so we save bandwidth.
Servers will trust other server signatures on a "configured by the
administrator" basis, so Alice, as Admin of Alice.com, chooses to trust
Bob.com's key to sign Charles.com key as valid, like in the standard GPG
Web of Trust. Keys that are not specifically accepted nor signed by a
trusted party, will cause e-mail to be accepted but marked as
non-trustable (maybe directly as spam).
I have also developed how it could work on the wire, with a simple
extension to current SMTP.
Regards
Noel
er Envite
_______________________________________________
perpass mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/perpass
