On 10/10/2024 3:42 AM, Ralph Seichter via mailop wrote:
I love the idea of the X tag with DKIM to set an expiration date after
which the signature should no longer be considered valid.
Why is that, I wonder? A digital signature does not age, after all.
Either a signature matches the signed payload or it does not; there is
no change over time happening.
Longer-term use has, at least, operational import, for access to the
DKIM key and for access to the message in its signed form. Neither of
these is automatically cheap, given operational vagaries and given the
manipulations many email systems do to the messages they handle.
d/
--
Dave Crocker
Brandenburg InternetWorking
bbiw.net
mast:@dcrocker@mastodon.social
_______________________________________________
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
