[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Only accepting e-mail from known parties



Dr. Dimitri Vulis wrote:
> I suggest to the kind folks working on PGP 3 that there should be a
> standard protocol to include within the signed portion the information
> on when and for whom this text is written: i.e. the list of e-mail
> recipients and/or Usenet newsgroups, which could be easily compared
> with the RFC 822/1036 headers of an e-mail/Usenet article. Perhaps
> there could be a new option for PGP to look _outside_ the signed block
> and match the headers with what's inside the block. E.g., suppose the
> signature block says: this text was written by [email protected], posted
> to alt.sex and alt.sex.banal and e-mailed to [email protected]. Suppose
> PGP is asked to check the signature in a file that purports to be a
> e-mail or a Usenet article and has some headers before the signed
> portion. If there is a list of To: recipients, and it includes someone
> other than the recipients listed within the signed block; or if there
> is a Newsgroups: header, and it includes newsgroups not listed within
> the signed portion; then the input is bogus. For compatibility with
> the existing software, if the signed block doesn't include this info,
> then this checking should't be done, of course.

In fact, the security multiparts standard (RFC 1848) includes a
provision for signing the headers as well as the body of a message.
The security multiparts can be used with PGP, and there is even an
Internet Draft for it (draft-elkins-pem-pgp-02.txt), but there is not
yet consensus for adopting this as a standard on the pgp-mime mailing
list. Perhaps your example can be used to argue one the advantages of
the security multiparts approach.

Raph