On 10/23/2013 2:34 PM, Noel Torres wrote:
On 23/10/13 19:18, Dave Crocker wrote:
On 10/23/2013 2:13 PM, Noel Torres wrote:
I think it would be possible, and even easy for the developers, to
program an extension to SMTP in which servers use OpenPGP among them,
independently of any TLS/SSL usage.
Why: It helps stopping spam because the receiver server can trust the
identity of the sender, and it helps avoiding wiretapping.
Please explain it's superiority over DKIM and SPF and DMARC.
d/
Hi Dave
In short, DKIM does not avoid wiretapping on itself, SPF does not,
either, nor DMARC.
You cited the benefit you are seeking as trusting who the 'sender' was.
That's an authentication/signature task, not a
confidentiality/encryption task.
d/
ps. the mere fact of authentication does not vet the trustworthiness of
the validated identity.
--
Dave Crocker
Brandenburg InternetWorking
bbiw.net
_______________________________________________
perpass mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/perpass
