On Tue, 11 Apr 2017, Alice Wonder wrote:
That being said, the suggestion of using 2 1 1 or even 2 0 0 entries may give the privacy I seek.
It will, but you will then have to come up with a lookup system to find the SMIME cert for a given user. If I want to email you without having prior contact, how do I find your SMIME cert? Sure, if you email me you can attach it, but then the problem moves from me to you on the first email message. And when you create some other lookup mechanism to find my key, you can use that lookup mechanism to harvest email addresses. In the end, email addresses are a point of contact and hard to keep secret. Paul _______________________________________________ dane mailing list [email protected] https://www.ietf.org/mailman/listinfo/dane
