[8194] in cryptography@c2.net mail archive
RE: Is PGP broken?
daemon@ATHENA.MIT.EDU (Bram Cohen)
Mon Dec 4 17:21:06 2000
Date: Mon, 4 Dec 2000 09:46:05 -0800 (PST)
From: Bram Cohen <bram@gawth.com>
To: Ian Brown <I.Brown@cs.ucl.ac.uk>
Cc: cryptography <cryptography@c2.net>
In-Reply-To: <CKEJIHDOBFKPAALJLELDEEEICCAA.I.Brown@cs.ucl.ac.uk>
Message-ID: <Pine.LNX.4.21.0012040944560.17382-100000@ultra.gawth.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
On Mon, 4 Dec 2000, Ian Brown wrote:
> > Come to think of it, there are some tricky issues with regards to crypto
> > on mailing lists, it might make sense to have a
> > X-crypto-originator foo@bar.com line in the headers to specify that the
> > crypto information contained in that piece of mail applies to the address
> > foo@bar.com - otherwise there's no clear way of unraveling all the
> > possible mixes of from, to, and reply-to headers which could possibly be
> > sent to a mailing list.
>
> The recipient would probably ignore the mail headers and use the userID(s)
> in the public key certificate included in the message.
To clarify - I think doing things based on PGP userIDs is unworkable, and
would like to do everything based on email addresses.
-Bram Cohen
