Re: what is a threat analysis?

To: ietf at ietf.org
Subject: Re: what is a threat analysis?
From: Dave Crocker <dhc2 at dcrocker.net>
Date: Fri, 12 Aug 2005 07:29:56 -0700
In-reply-to: <01LRPFUO6Y1K000092@mauve.mrochek.com>
List-help: <mailto:ietf-request@ietf.org?subject=help>
List-id: IETF-Discussion <ietf.ietf.org>
List-post: <mailto:ietf@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
References: <42FA5884.9060103@cisco.com> <42FB1640.5020906@zurich.ibm.com> <42FB664A.60605@cisco.com> <01LRP7VL7OTW000092@mauve.mrochek.com> <p0623090cbf21597402ad@[128.89.89.106]> <01LRPFUO6Y1K000092@mauve.mrochek.com>
Sender: ietf-bounces at ietf.org
User-agent: Mozilla Thunderbird 1.0.6 (Windows/20050716)

I thought that what Russ asked for was not a threat analysis for
DKIM, but a threat analysis for Internet e-mail, the system that DKIM
proposes to protect.
This is more less my guess as to what's being asked for, although I disagree with the implication that DKIM proposes to protect email in its entirety.

The phrasing that I took from interactions with Russ Housely was: What are the threats that DKIM responds to?

That's in the arena of protecting email, albeit stated perhaps with more focus.

The 'threats' document on the dkim web page definitely attends to threats TO dkim. Russ was clear the day after the bof that that was not what he had meant. So, it's a useful bit of writing, but not what we need to focus on right now.


_______________________________________________
Ietf mailing list
Ietf at ietf.org
https://www1.ietf.org/mailman/listinfo/ietf

References:
- what is a threat analysis?
  - From: Michael Thomas
- Re: what is a threat analysis?
  - From: Brian E Carpenter
- Re: what is a threat analysis?
  - From: Michael Thomas
- Re: what is a threat analysis?
  - From: Ned Freed
- Re: what is a threat analysis?
  - From: Stephen Kent
- Re: what is a threat analysis?
  - From: Ned Freed

Prev by Date: Re: what is a threat analysis?
Next by Date: Re: what is a threat analysis?
Previous by thread: Re: what is a threat analysis?
Next by thread: Re: what is a threat analysis?
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.

Re: what is a threat analysis?

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.