[VOIPSEC] DKIM Domain Key Identified Mail
Simon Horne
s.horne at packetizer.com
Thu Nov 24 02:21:44 CST 2005
Came across this draft to the IETF being used to authenticate email and
prevent spoofing.
http://bgp.potaroo.net/ietf/idref/draft-allman-dkim-base/
Interesting idea for a domain server to sign outgoing emails and have the
receiving server validate them with the sender domain's public key
retrieved from DNS.
It's very light weight and I wonder whether it would applicable to use
between SIP servers
ie the server signs the invite message and the receiver validates the
signature before routing the message.
I don't think storing in DNS and retrieving as required is a good idea for
real time communication however having a central repository might be an
idea which the SIP servers can put down every day or so. This will save a
lot of work compared to each server maintaining a large ACL
Simon
More information about the Voipsec
mailing list