[index] [text page] [<<start] [<prev] [next>] [last>>]
Page 13: Architectural benefits
The end-to-end principle is that the only way to guarantee correct
error recovery semantics is to implement them on the end-points.
The same argument applies to security protocols. Thus you get a
(fairly fluffy) corollary that error handling and security handing
should have the same operating extent. This is not useful for much
more than an indication that the design is right.
The scalability consideration is something that this design shares
with a lot of the other email authentication schemes being developed
at the moment. This consideration has a lot to do with the lack of
popularity of PGP or S/MIME.
The final point is fairly unique -- most anti-spam systems are
either entirely selfish or depend entirely on co-operation.
The latter is especially true for authentication schemes.
Generated by MagicPoint