On Mon, Nov 18, 2024 at 9:04 AM Dave Crocker <d...@dcrocker.net> wrote:
> On 11/6/2024 6:54 PM, Wei Chuang wrote: > > signed recipient > > Small request for clarification: > > I'm not familiar with this term. And the 'strong protections' paper you > cite does not seem to use it. > > Since recipients don't do the signing, it is not safely intuitive to > guess what the term means. > I suspect it's a reference to the fact that DKIM2 includes a single envelope recipient in the data fed to the hash which is then encrypted to yield the signature, so the same signature can't be replayed to a different recipient. So in that sense the recipient is "signed". -MSK
_______________________________________________ Ietf-dkim mailing list -- ietf-dkim@ietf.org To unsubscribe send an email to ietf-dkim-le...@ietf.org
