more clarification w/r/t sender|from

diff --git a/zot.txt b/zot.txt
index 3ad7295cc612112c93648431b0c38d275d574d9e..7568d1c30f3553ed6aeb251213adc7309b52a903 100644 (file)
--- a/zot.txt
+++ b/zot.txt
@@ -30,7 +30,7 @@ resolvable addresses containing both salmon and zot endpoints.
  <zot:key>((key))</zot:key>
  <zot:iv>((iv))</zot:iv>
  <zot:env>((envelope))</zot:env>
- <zot:sig key_id="xxx">((envelope signature))</zot:sig>
+ <zot:sig key_id="xxx">((sender signature))</zot:sig>
  <zot:alg>AES-256-CBC</zot:alg>
  <zot:data type='application/magic-envelope+xml'>((salmon))</zot:data>
 </zot:msg>
@@ -78,10 +78,12 @@ be sent to any additional addresses in the recipient list. The original author
 MUST send the reply to all known recipients of the original message, with 
 their webfinger identity as Sender, and the comment/reply author as From.   
 
-Receiving agents MUST validate the From identity as the signer of the salmon
-magic envelope, and MAY reject it. They MAY also reject the message if the
-Sender is not allowed in their "friend list", or if they do not have a 
-suitable relationship with the Sender.
+Receiving agents SHOULD validate the From identity as the signer of the salmon
+magic envelope, and MAY reject it. They SHOULD also verify the Sender signature
+of the zot packet if it is different than the salmon signature. They MAY 
+reject the message if the Sender is not allowed in their "friend list", or if 
+they do not have a suitable relationship with the Sender, or if either
+signature fails to validate.  
 
 
 To: *