分享
 
 
 

RFC1864 - The Content-MD5 Header Field

王朝other·作者佚名  2008-05-31
窄屏简体版  字體: |||超大  

Network Working Group J. Myers

Request For Comments: 1864 Carnegie Mellon

Obsoletes: 1544 M. Rose

Dover Beach Consulting, Inc.

October 1995

The Content-MD5 Header Field

Status of this Memo

This document specifies an Internet standards track protocol for the

Internet community, and requests discussion and suggestions for

improvements. Please refer to the current edition of the "Internet

Official Protocol Standards" (STD 1) for the standardization state

and status of this protocol. Distribution of this memo is unlimited.

Abstract

This memo specifies an optional header field, Content-MD5, for use

with MIME-conformant messages.

Table of Contents

1. IntrodUCtion .............................................. 1

2. Generation of the Content-MD5 Field ....................... 2

3. Processing the Content-MD5 field .......................... 3

4. Security Considerations ................................... 3

5. Acknowledgements .......................................... 3

6. References ................................................ 3

7. Authors' Addresses ........................................ 4

1. Introduction

Despite all of the mechanisms provided by MIME [1] which attempt to

protect data from being damaged in the course of email transport, it

is still desirable to have a mechanism for verifying that the data,

once decoded, are intact. For this reason, this memo defines the use

of an optional header field, Content-MD5, which may be used as a

message integrity check (MIC), to verify that the decoded data are

the same data that were initially sent. The Content-MD5 header may

also be placed in the encapsulated headers of an object of type

message/external-body, to be used to verify that the retreived and

decoded data are the same data that were initially referenced.

MD5 is an algorithm for computing a 128 bit "digest" of arbitrary-

length data, with a high degree of confidence that any alterations in

the data will be reflected in alterations in the digest. The MD5

algorithm itself is defined in [2]. This memo specifies how the

algorithm may be used as an integrity check for MIME mail.

2. Generation of the Content-MD5 Field

The Content-MD5 field is generated by only an originating user agent.

Message relays and gateways are eXPressly forbidden from generating a

Content-MD5 field.

Use of the Content-MD5 field is completely optional, but its use is

recommended whenever data integrity is desired, but Privacy-Enhanced

Mail services [3] are not available. (Consult Section 4 for further

details.) The Content-MD5 field may only be added to MIME entities of

a `leaf' nature, i.e., the Content-MD5 field may be used with any

content type other than multipart or message/rfc822.

To generate the value of the Content-MD5 field, the MD5 algorithm is

computed on the canonical form of the MIME entity's object. In

particular, this means that the sender applies the MD5 algorithm on

the data immediately after conversion to canonical form, before

applying any content-transfer-encoding, and that the receiver also

applies the MD5 algorithm on the canonical form, after undoing any

content-transfer-encoding. For textual data, this means the MD5

algorithm must be computed on data in which the canonical form for

newlines applies, that is, in which each newline is represented by a

CR-LF pair. The canonical encoding model of MIME is described in

Appendix G of [1].

The output of the MD5 algorithm is a 128 bit digest. When viewed in

network byte order (big-endian order), this yields a sequence of 16

octets of binary data. These 16 octets are then encoded according to

the base64 algorithm in order to oBTain the value that is placed in

the Content-MD5 field. Thus, if the application of the MD5 algorithm

over the raw data of a MIME entity results in a digest having the

(unlikely) value of "Check Integrity!", then that MIME entity's

header could contain the field

Content-MD5: Q2hlY2sgSW50ZWdyaXR5IQ==

Finally, as discussed in Appendix B of [1], textual data is regularly

altered in the normal delivery of mail. Because the addition or

deletion of trailing white space will result in a different digest,

either the quoted-printable or base64 algorithm should be employed as

a content-transfer-encoding when the Content-MD5 field is used.

3. Processing the Content-MD5 field

If the Content-MD5 field is present, a recipient user agent may

choose to use it to verify that the contents of a MIME entity have

not been modified during transport. Message relays and gateways are

expressly forbidden to alter their processing based on the presence

of the Content-MD5 field. However, a message gateway is allowed to

remove the Content-MD5 field if the corresponding MIME entity is

translated into a different content-type.

4. Security Considerations

This document specifies a data integrity service that protects data

from accidental modification while in transit from the sender to the

recipient. A secure data integrity service, such as that provided by

Privacy Enhanced Mail [3], is conjectured to protect data from all

modifications.

5. Acknowledgements

This memo is based almost entirely on text originally written by

Nathaniel Borenstein of Bellcore. In addition, several improvements

were suggested by Keith Moore of the University of Tennessee,

Knoxville.

6. References

[1] Borenstein, N., and N. Freed, "MIME (Multipurpose Internet Mail

Extensions) Part One: Mechanisms for Specifying and Describing

the Format of Internet Message Bodies", RFC1521, Bellcore,

Innosoft, September 1993.

[2] Rivest, R., "The MD5 Message-Digest Algorithm", RFC1321, MIT

Laboratory for Computer Science and RSA Data Security, Inc.,

April 1992.

[3] Linn, J., "Privacy Enhancement for Internet Electronic Mail, Part

I: Message Encryption and Authentication Procedures", RFC1421,

IAB IRTF PSRG, IETF PEM WG, February 1993.

7. Authors' Addresses

John G. Myers

Carnegie Mellon University

EMail: jgm+@cmu.edu

Marshall T. Rose

Dover Beach Consulting, Inc.

 
 
 
免责声明:本文为网络用户发布,其观点仅代表作者个人观点,与本站无关,本站仅提供信息存储服务。文中陈述内容未经本站证实,其真实性、完整性、及时性本站不作任何保证或承诺,请读者仅作参考,并请自行核实相关内容。
2023年上半年GDP全球前十五强
 百态   2023-10-24
美众议院议长启动对拜登的弹劾调查
 百态   2023-09-13
上海、济南、武汉等多地出现不明坠落物
 探索   2023-09-06
印度或要将国名改为“巴拉特”
 百态   2023-09-06
男子为女友送行,买票不登机被捕
 百态   2023-08-20
手机地震预警功能怎么开?
 干货   2023-08-06
女子4年卖2套房花700多万做美容:不但没变美脸,面部还出现变形
 百态   2023-08-04
住户一楼被水淹 还冲来8头猪
 百态   2023-07-31
女子体内爬出大量瓜子状活虫
 百态   2023-07-25
地球连续35年收到神秘规律性信号,网友:不要回答!
 探索   2023-07-21
全球镓价格本周大涨27%
 探索   2023-07-09
钱都流向了那些不缺钱的人,苦都留给了能吃苦的人
 探索   2023-07-02
倩女手游刀客魅者强控制(强混乱强眩晕强睡眠)和对应控制抗性的关系
 百态   2020-08-20
美国5月9日最新疫情:美国确诊人数突破131万
 百态   2020-05-09
荷兰政府宣布将集体辞职
 干货   2020-04-30
倩女幽魂手游师徒任务情义春秋猜成语答案逍遥观:鹏程万里
 干货   2019-11-12
倩女幽魂手游师徒任务情义春秋猜成语答案神机营:射石饮羽
 干货   2019-11-12
倩女幽魂手游师徒任务情义春秋猜成语答案昆仑山:拔刀相助
 干货   2019-11-12
倩女幽魂手游师徒任务情义春秋猜成语答案天工阁:鬼斧神工
 干货   2019-11-12
倩女幽魂手游师徒任务情义春秋猜成语答案丝路古道:单枪匹马
 干货   2019-11-12
倩女幽魂手游师徒任务情义春秋猜成语答案镇郊荒野:与虎谋皮
 干货   2019-11-12
倩女幽魂手游师徒任务情义春秋猜成语答案镇郊荒野:李代桃僵
 干货   2019-11-12
倩女幽魂手游师徒任务情义春秋猜成语答案镇郊荒野:指鹿为马
 干货   2019-11-12
倩女幽魂手游师徒任务情义春秋猜成语答案金陵:小鸟依人
 干货   2019-11-12
倩女幽魂手游师徒任务情义春秋猜成语答案金陵:千金买邻
 干货   2019-11-12
 
推荐阅读
 
 
 
>>返回首頁<<
 
靜靜地坐在廢墟上,四周的荒凉一望無際,忽然覺得,淒涼也很美
© 2005- 王朝網路 版權所有