Re: [Identifiedmail-discuss] Comparison to DomainKeys

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Walter Truitt wrote:

> Hello,
>
> I just recently began reading some of the different proposals, as the 
> news has info on recent events such as the FTC Spam Summit.
>
> I had earlier in the year looked at SPF and thought it was rather 
> intelligent.  I only recently began looking into the domain keys and 
> internet identified mail.
>
> Was IIM setup to strengthen the original domain keys?  I believe that 
> the nofws was added more recently to domain keys, and that may be an 
> indication that it was taking portions from IIM.  I think I prefer 
> what I see in domain keys better, as the keys are in the DNS server 
> rather than in each message.

IIM and DomainKeys were parallel developments.  Neither was in response 
to the other.  Both proposals, in their revision, have incorporated 
portions of the other.

>
> Reading articles, it seems that both proposals have strong corporate 
> backing, but in terms of implementation, it seems that the domain keys 
> is ahead and has performance numbers with a test using sendmail.

At the FTC/NIST Email Authentication Summit two weeks ago, comparative 
benchmarks of IIM and DomainKeys were presented.  DomainKeys was 
slightly faster (thought to be due to the extra SHA1 calculation in IIM) 
but the computation burden of both approaches was light.

>
> Can someone tell me in what ways IIM might be better than domain keys?

A comparison matrix between IIM and DomainKeys is at
    http://mipassoc.org/mass/crocker-features-iim-dkeys-06dc.htm

A message I wrote with more discussion of the differences is at
    http://www.imc.org/ietf-mailsig/mail-archive/msg00571.html

-Jim