From 1860f90a16afd7fff2b3491e4a4fa361231398a69289d9914ed311d3ce906dfa Mon Sep 17 00:00:00 2001
From: Nicholas Johnson <nick@nicholasjohnson.ch>
Date: Sun, 9 Jun 2024 00:00:00 +0000
Subject: Initial commit

---
 README.md | 7 +++++++
 1 file changed, 7 insertions(+)
 create mode 100644 README.md

(limited to 'README.md')

diff --git a/README.md b/README.md
new file mode 100644
index 0000000..84db23a
--- /dev/null
+++ b/README.md
@@ -0,0 +1,7 @@
+# DKIM Privates
+
+[RFC4871](https://datatracker.ietf.org/doc/html/rfc4871.html) states:
+
+"DomainKeys Identified Mail (DKIM) defines a domain-level authentication framework for email using public-key cryptography and key server technology to permit verification of the source and contents of messages by either Mail Transfer Agents (MTAs) or Mail User Agents (MUAs).  The ultimate goal of this framework is to permit a signing domain to assert responsibility for a message, thus protecting message signer identity and the integrity of the messages they convey while retaining the functionality of Internet email as it is known today. Protection of email identity may assist in the global control of "spam" and "phishing"."
+
+DKIM also provides non-repudiation, despite it not being an explicit design goal. To retain email deniability, I rotate my DKIM keys and publish the revoked ones, which can be found in the `keys` directory.
-- 
cgit v1.2.3