]> DKIM Signing Algorithm AdaEd25519-SHA256
steffen@sdaoden.eu
 General Internet Engineering Task Force DKIM This specification adds the DKIM (RFC 6376) signing algorithm AdaEd25519-SHA256. It is identical to Ed25519-SHA256 (RFC 8463) except for its use of DKIM hash algorithm adaptivity. Private and public keys are identical, and can be used interchangeably.
Introduction The DKIM algorithm of how "Computing the Message Hashes" for IMF has to be performed does not adapt well to modern algorithms like Ed25519 which perform internal prehashing. The DKIM key type Ed25519-SHA256 as standardized in 2018, however, uses this algorithm. It has not gained much traction since its introduction. AdaEd25519-SHA256 instead uses the DKIM Hash Algorithm Adaptivity algorithm.
AdaEd25519-SHA256 AdaEd25519-SHA256 is identical to Ed25519-SHA256 except that it uses DKIM Hash Algorithm Adaptivity: the DKIM (section 3.7) "hash-alg" SHA-256 is only used to produce the "body-hash", and "sig-alg" is fed in all the input used to create the "data-hash". Private and public keys are identical, and can be used interchangeably.
INFORMATIVE NOTE: Even though defined ASN.1 Object Identifiers (OIDs) for Ed25519, it was considered more important to keep compatibility with actively used Ed25519-SHA256 keys, than to support ASN.1 standard means of inspecting key data blobs.
Syntax The "sig-a-tag-k" ABNF definition of DKIM (section 3.5), as well as the "key-k-tag-type" ABNF definition of DKIM (section 3.6.1) are both extended by an entry "adaed25519".
IANA Considerations This memo requests adding the new key type "adaed25519" to the "DKIM Key Type" registry.
Security Considerations This specification should add all the gains of DKIM Hash Algorithm Adaptivity to the Ed25519 DKIM key type.
References Normative References Informative References