IETF Logo Mail Archive

[Bimi] BIMI & the MUA

"Brotman, Alex" <Alex_Brotman@comcast.com> Sun, 03 September 2023 13:39 UTC

Return-Path: <Alex_Brotman@comcast.com>
X-Original-To: bimi@ietfa.amsl.com
Delivered-To: bimi@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C959EC14CE55 for <bimi@ietfa.amsl.com>; Sun, 3 Sep 2023 06:39:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.104
X-Spam-Level:
X-Spam-Status: No, score=-2.104 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=comcast.com header.b="XEdFwvn5"; dkim=pass (1024-bit key) header.d=comcastcorp.onmicrosoft.com header.b="XMhXGaRK"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wUhEj_K4hPdi for <bimi@ietfa.amsl.com>; Sun, 3 Sep 2023 06:39:55 -0700 (PDT)
Received: from mx0b-00143702.pphosted.com (mx0b-00143702.pphosted.com [148.163.141.77]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 43EBAC14F736 for <bimi@ietf.org>; Sun, 3 Sep 2023 06:39:55 -0700 (PDT)
Received: from pps.filterd (m0156896.ppops.net [127.0.0.1]) by mx0b-00143702.pphosted.com (8.17.1.19/8.17.1.19) with ESMTP id 383DVifD016165 for <bimi@ietf.org>; Sun, 3 Sep 2023 09:39:54 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcast.com; h=from : to : subject : date : message-id : content-type : mime-version; s=20190412; bh=419u57cdEVb9qLs2FszHZfQEFh2idjALqG3US09QVnU=; b=XEdFwvn5x5pDNl3E1r+xEcPdmOIXy19qHc0VW1pZhE8NncEh/ZN9TRk/4Cz2+WUHxBzG HrX572w2WVaAG18n2O6xycTETl3ej6qwzvNJLVWy1y7ymiLDECpneg1ygM0h0LmmMIHM cjAyv6TSHqIYs6LwNyl3cMnX1QjermwCOD2tz0TWPiT8vKHmTyd+cF009b4A/x/AjD9G S+CsyfAh7BaQWkAUAzXqWG67jZCvl4Q/4AoqgfUbKkOmRKeO6EPnKbukvs6klKiMUsmJ eL8LqHopFfzTga5G+GZIjcgN8BWI2qZ+gBG104WHEdTCF17wZg6MWrvzlLyiag2f8DEc HA==
Received: from nam12-bn8-obe.outbound.protection.outlook.com (mail-bn8nam12lp2175.outbound.protection.outlook.com [104.47.55.175]) by mx0b-00143702.pphosted.com (PPS) with ESMTPS id 3sv02a4rvf-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for <bimi@ietf.org>; Sun, 03 Sep 2023 09:39:54 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=aHP4dMq1bqUUgLSKsCb92F9CX5WxXsRcn/l9gSU6IgYTCz2EHYzFgndo9bzAPFAhYMcCkjgdXwdWc0uoiVidIwgXj3nllJgfcZnQiwBACaxnq70r4QeyqTBF9rSlPJuhksPlJ6KZVLLtlsgi40R+5JIY4+ujqFnBuZl9FxiDGU/Ijow57LUgFh6/hnOqiNLxVREcjBHnKGFE0UpHimFOx2tjDA02dn/2i2aXaFyHjL+2zTbxZ9SioMIjN4W1HHxmkAfTqCibhSZt/pDGpufARCZRNWkm/oYKucr9mNaCzcBTJMZNhfOoRVSBfMZC7hoAerXaTCD9UMgApU6Mo2i6hg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=419u57cdEVb9qLs2FszHZfQEFh2idjALqG3US09QVnU=; b=H44KMO+w6rBICjyH1N1HUsNS3dqc1BbBwQZ3F5nK9ETOSN/H88PSUnHnJxbxS+wKGBwTqplcWUaz87v4V3WZlZ7x8KfSDJ/9b7CsVJkuX3vYIU1VQo6IjAVfQCpfoZpaHOQ+FYjSRzt4/USMcpk+3xlOjPBg/xr4xo7JfLY5tKOq9BHS6HZYuypF8S3yCL3rEb/MjoHk6nH644RXm16G/uj47jzmXJcrgM5F4g73JZTvDsGS0z6j0gGqry14ng4g4vwQcxoP6sKhR5PcT1VPviRSxsXoiOhGIUMBq2XwlCYSOlgwldEAxT/QVxUp05lNaifePIpDX4VValV3AnknGg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=comcast.com; dmarc=pass action=none header.from=comcast.com; dkim=pass header.d=comcast.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcastcorp.onmicrosoft.com; s=selector1-comcastcorp-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=419u57cdEVb9qLs2FszHZfQEFh2idjALqG3US09QVnU=; b=XMhXGaRKIvW6qmDkwjCybxQIIMCGFspT4Swwj4pbFul26zu8aZpM8vioKycKYp0dKL33udv28VMF8mv41R/yaGgWx8dSXNc+VaXJ1U28PbBdf0IxSYT9dZDT6pGbyHajxTyVPgZUFPZFAdO4GgQH7lOeOsc02yaVAMvvbeXQHig=
Received: from MN2PR11MB4351.namprd11.prod.outlook.com (2603:10b6:208:193::31) by CH3PR11MB8185.namprd11.prod.outlook.com (2603:10b6:610:159::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6745.30; Sun, 3 Sep 2023 13:39:48 +0000
Received: from MN2PR11MB4351.namprd11.prod.outlook.com ([fe80::c8da:dddf:938f:4088]) by MN2PR11MB4351.namprd11.prod.outlook.com ([fe80::c8da:dddf:938f:4088%4]) with mapi id 15.20.6745.030; Sun, 3 Sep 2023 13:39:48 +0000
From: "Brotman, Alex" <Alex_Brotman@comcast.com>
To: "BIMI (IETF) (bimi@ietf.org)" <bimi@ietf.org>
Thread-Topic: BIMI & the MUA
Thread-Index: AdneajpKK5yvLb5mTdSDWbuK1bo72A==
Date: Sun, 03 Sep 2023 13:39:48 +0000
Message-ID: <MN2PR11MB43512B68983A21E6B546E0BDF7EAA@MN2PR11MB4351.namprd11.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_ActionId=2ed67d7e-5035-48ea-8aac-7bbcad74d301; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_ContentBits=0; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_Enabled=true; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_Method=Standard; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_Name=Confidential (C); MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_SetDate=2023-09-03T13:26:06Z; MSIP_Label_15652fe2-2b59-4d95-925c-ee86d789ff67_SiteId=906aefe9-76a7-4f65-b82d-5ec20775d5aa;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: MN2PR11MB4351:EE_|CH3PR11MB8185:EE_
x-ms-office365-filtering-correlation-id: 30770eda-9c0c-4bcf-143b-08dbac833df7
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:MN2PR11MB4351.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(39860400002)(366004)(396003)(376002)(346002)(136003)(84050400002)(186009)(1800799009)(451199024)(478600001)(71200400001)(64756008)(66446008)(66476007)(66556008)(66946007)(76116006)(6506007)(7696005)(9686003)(2906002)(8676002)(8936002)(316002)(6916009)(41300700001)(52536014)(5660300002)(86362001)(33656002)(82960400001)(99936003)(122000001)(38070700005)(38100700002)(83380400001)(55016003); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: NCBaSGoZ2UmnYg6Yh02mLsY5H9E+/baFELi1GVg5kwwcvMMGYEyn2netRpKlwb0iOnt5Dr6GS4l4PcqjveD/K+yddgRgVKENsdvmxqe6GuImz543Y6mjTPRM0JYJ2RmgpPSK6kWsnSAb0hryr4yDKRaY7C45dh3jJY0v6lyVEsC0ksp54xHgoDR7J1ydnb07vRv3SZYeGpXKn3iAITOQ0+ceNOnLd6MG/juslsY4WYbZ669JQYhOp63FLSC9V/P2UXdQY7+bj4SnExBb3q53sFK4dyKkQILuLzAFsfNSZEewH88jHLWbnNwkyfTGAU19xIbT2MjhXANPhULuiUGv+IdZswPYxTu0FtBJPcfEB6uBhOteOmEeBEKR2GCOY5QTFL0lZZwQuNG4U3QGZDcj2YWxnF8tr/pNu/FKBXBsduZgYDVDf3BFV+doqiT5B2MUraKF37SqP5AD9zBUheVXv7mikZGDgRU5myoQ2puMg+04eU9LBnVqLh8T+yGhs3Pb7egDxcW2CYgJjvNrDZ35/4+nCp22qzcfJ2NYHOnsqSu5rverCx+LnZVWjeI/qVZhpbAlhhXyfilTFJAKqVq/GAN7+GRCQue4dUAz7CfDvFFmzerhzKqbcM/wyiMxHsxmmpkz4NINQukYTNeJVUJiUXPi/h3ETpGsnzgVpVLmJCdrJFTbtrBGftgzr7g2ScWLZ+g3zl0Bvv3jGx2uOTAXX9hlZc2JUFAswdmfVPkPFjlvDyvX47i6WPmouPHbpQL3AFrCBKNNksMeLPYS5vfhjf/axaujhIrDzWf0qlU5ry5ikegd6ECSbpHevP9F0wNhsxwzQQ3uoZc4G8G0cps2n05L/gNfWOq1rGEhJ968rZR2ON3F6ZhYIk0NYTUhF1DMy1Ur36AOx+3dCi7SbOo08kNDH2SrLmzYFFu2VJtgZiKak7pB0xroeHg78PA+dDql+EmJkBsYq19W7UJQwNf/sn/a+yQsqza7dqY3TK2Peo8mDOst02Tui3ZHrOQcia6MpXqOif07VwTMv84dX2QBNU+jBoEAPkxtH1Ta1imbTG9JeGC+27MJCogFCzfTS+aYaYm7YknYMxrTjlBFCxaNTzv3lW1HMP2/05djM0dO2hkdlT9kJH4yl/LzRng8bnXIKhd9//MDjKm/RTOM5c919I/QekcW0NtIZmbjKdhS/WKh+3PAeOppMreCqsBervw37n9IFX086KJnJHCWhKvkC9g7cYcCSHmDPqoZu7wtl2Uqxem4+oUj5GRtMEDB8cC3zJukIm39bLUGI/j08aSumhy1Bbd6ZcvurXWf+5T19QVI/iV2MrRLQnETyG+HrNer0XosRJjRGKbEPScKN4yj26FmlFQ89YQM2ZJ8ct8b/KD30kpJLunAafG+XsCbYwueYQrJfhwDJyUt77kHUJbgrrQPhci28Hqd4JppdorSGf1J34UPSM+oAFIpIKQHjjANskoeFKYwA8eIdir5Cf5ytNq8Wpqgowcz4Ymm8PPFHPVT3I8OI5XAONkrE07xDQuzFHRTLhFo6xs7zDqhWWeKp23/XlTtV01w5ro5SLZso4cUmJaPRe5efhoHxNGxW6XmcvWgYbQ4l5xQC9/a2LprhieVvzzDUVm9UsBpDVgGFy1DhP2fhQyNEG0bqFhQxPd3B3yOzIBHh9OGPvJjdmjJWQ==
Content-Type: multipart/mixed; boundary="_002_MN2PR11MB43512B68983A21E6B546E0BDF7EAAMN2PR11MB4351namp_"
MIME-Version: 1.0
X-OriginatorOrg: comcast.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: MN2PR11MB4351.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 30770eda-9c0c-4bcf-143b-08dbac833df7
X-MS-Exchange-CrossTenant-originalarrivaltime: 03 Sep 2023 13:39:48.3210 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 906aefe9-76a7-4f65-b82d-5ec20775d5aa
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: M//yEhAtyg6SR4A2T0cXODh9bVk4d51edae15EtxpKZNyBbLx/gvg6zGZQEUodjUL851OKKeDhBQgrQWV6uKaFV3GlWE6xsDt+63szd5mtM=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CH3PR11MB8185
X-Proofpoint-GUID: POUdoOahbSb-_MWkFdXFASLh2yEv9bIP
X-Proofpoint-ORIG-GUID: POUdoOahbSb-_MWkFdXFASLh2yEv9bIP
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.267,Aquarius:18.0.957,Hydra:6.0.601,FMLib:17.11.176.26 definitions=2023-09-03_11,2023-08-31_01,2023-05-22_02
X-Proofpoint-Spam-Reason: safe
Archived-At: <https://mailarchive.ietf.org/arch/msg/bimi/mhPqlUN0wtBZX3v4NL0HBDZw9S8>
Subject: [Bimi] BIMI & the MUA
X-BeenThere: bimi@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Brand Indicators for Message Identification <bimi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bimi>, <mailto:bimi-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bimi/>
List-Post: <mailto:bimi@ietf.org>
List-Help: <mailto:bimi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bimi>, <mailto:bimi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 03 Sep 2023 13:39:59 -0000

Hey folks,

Over the past few months, we've been having some discussions about how the MTA may transfer information about the validation process to the user MUA.  We feel this is necessary so that providers who do not maintain their own (mobile) client can attempt to impart that information in a usable way, or so that those who do can allow users to employ third-party clients without loss of this ability.  While discussing this, we had a few criteria we thought should be met, where some of these are reasonable attempt at ensuring the information is reliable, q reasonable attempt at prevention of replay, and revocation (by the MBP).

We've come up with two methods:

One would be to create something akin to the A-R, but focused more on BIMI with specific data points for that goal.  This would also employ a DKIM-ish signature for that header, and the MUA would then be able to use this information when evaluating the message.  We haven't yet added this method to the core document, but that's where we believe it would reside.  For the alternate proposal, I've attached a document which was initially created nearly a year ago, but not generally circulated as it was being discussed (along with alternatives). This is a more complicated method, though, more complete as it relates to goals.

Thanks for your comments and time.

-- 
Alex Brotman
Sr. Engineer, Anti-Abuse & Messaging Policy
Comcast

v2.23.0 | Report a Bug | By Email