Re: [dmarc-ietf] WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc)
Dave Crocker <dhc@dcrocker.net> Mon, 14 July 2014 17:33 UTC
Return-Path: <dhc@dcrocker.net>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 316F11ACD01; Mon, 14 Jul 2014 10:33:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ve0aOuGhFoqL; Mon, 14 Jul 2014 10:33:10 -0700 (PDT)
Received: from sbh17.songbird.com (sbh17.songbird.com [72.52.113.17]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 11D5A1A8BB2; Mon, 14 Jul 2014 10:33:08 -0700 (PDT)
Received: from [192.168.1.66] (76-218-8-156.lightspeed.sntcca.sbcglobal.net [76.218.8.156]) (authenticated bits=0) by sbh17.songbird.com (8.13.8/8.13.8) with ESMTP id s6EHX4Cw031738 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT); Mon, 14 Jul 2014 10:33:07 -0700
Message-ID: <53C413EB.5060408@dcrocker.net>
Date: Mon, 14 Jul 2014 10:31:23 -0700
From: Dave Crocker <dhc@dcrocker.net>
Organization: Brandenburg InternetWorking
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.6.0
MIME-Version: 1.0
To: Pete Resnick <presnick@qti.qualcomm.com>
References: <20140714164212.22974.20340.idtracker@ietfa.amsl.com>
In-Reply-To: <20140714164212.22974.20340.idtracker@ietfa.amsl.com>
X-Enigmail-Version: 1.6
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.0 (sbh17.songbird.com [72.52.113.66]); Mon, 14 Jul 2014 10:33:07 -0700 (PDT)
Archived-At: http://mailarchive.ietf.org/arch/msg/dmarc/C5O5cQgGLeOQ5UQBhXIlNe1ZxMA
X-Mailman-Approved-At: Mon, 14 Jul 2014 14:18:34 -0700
Cc: dmarc WG <dmarc@ietf.org>, ietf@ietf.org
Subject: Re: [dmarc-ietf] WG Review: Domain-based Message Authentication, Reporting & Conformance (dmarc)
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: dcrocker@bbiw.net
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 14 Jul 2014 17:33:12 -0000
On 7/14/2014 9:42 AM, The IESG wrote: > A new IETF working group has been proposed in the Applications Area. The > IESG has not made any determination yet. The following draft charter was > submitted, and is provided for informational purposes only. Please send > your comments to the IESG mailing list (iesg at ietf.org) by 2014-07-24. The first paragraph of a charter is circulated independently of the rest, such as when announcing the working group. As such, it needs to serve as a kind of abstract. This is why there is a requirement, specified in RFC 2418 (WG Guidelines & Procedures), "Description of working group: "The first paragraph must give a brief summary of the problem area, basis, goal(s) and approach(es) planned for the working group.. > Charter: > > Domain-based Message Authentication, Reporting & Conformance (DMARC) > uses existing mail authentication technologies (SPF and DKIM) to > extend validation to the RFC5322.From field. DMARC uses DNS records > to add policy-related requests for receivers and defines a feedback > mechanism from receivers back to domain owners. This allows a domain > owner to advertise that mail can safely receive differential > handling, such as rejection, when the use of the domain name in the > From field is not authenticated. Existing deployment of DMARC has > demonstrated utility at internet scale, in dealing with significant > email abuse, and has permitted simplifying some mail handling > processes. > > The existing base specification is being submitted as an Independent > Submission to become an Informational RFC. > > However, DMARC is problematic for mail that does not flow from > operators having a relationship with the domain owner, directly to > receivers operating the destination mailbox. Examples of such > "indirect" flows are mailing lists, publish-to-friend functionality, > mailbox forwarding (".forward"), and third-party services that send > on behalf of clients. The working group will explore possible updates > and extensions to the specifications in order to address limitations > and/or add capabilities. It will also provide technical > implementation guidance and review possible enhancements elsewhere in > the mail handling sequence that could improve could DMARC > compatibility. The DMARC draft charter's first paragraph does not state any goals. This can be fixed by moving the last two sentences of the third paragraph, to the end of the first. That is, end the first descriptive paragraph with: "The working group will explore possible updates and extensions to the specifications in order to address limitations and/or add capabilities. It will also provide technical implementation guidance and review possible enhancements elsewhere in the mail handling sequence that could improve could DMARC compatibility. and delete it from it's current position. > References > ---------- > > DMARC - http://dmarc.org > SPF - RFC7208 > DKIM - RFC6376 > Internet Message Format - RFC5322 > OAR / Original Authentication Results - > draft-kucherawy-original-authres > Using DMARC - draft-crocker-dmarc-bcp-03 This is missing two citations that I thought were supposed to be included, since they touch on indirect email flows: Delegating DKIM Signing Authority - draft-kucherawy-dkim-delegate-00 DKIM Third-Party Authorization Label - draft-otis-dkim-tpa-label-03 d/ -- Dave Crocker Brandenburg InternetWorking bbiw.net
- [dmarc-ietf] WG Review: Domain-based Message Auth… The IESG
- Re: [dmarc-ietf] WG Review: Domain-based Message … Dave Crocker
- Re: [dmarc-ietf] WG Review: Domain-based Message … Dave Crocker
- Re: [dmarc-ietf] WG Review: Domain-based Message … Scott Kitterman
- Re: [dmarc-ietf] WG Review: Domain-based Message … Hector Santos
- Re: [dmarc-ietf] WG Review: Domain-based Message … Pete Resnick
- Re: [dmarc-ietf] WG Review: Domain-based Message … Douglas Otis
- Re: [dmarc-ietf] WG Review: Domain-based Message … Douglas Otis
- Re: [dmarc-ietf] WG Review: Domain-based Message … Hector Santos
- Re: [dmarc-ietf] WG Review: Domain-based Message … Eric Burger
- Re: [dmarc-ietf] WG Review: Domain-based Message … Hector Santos