Re: [dmarc-ietf] Comment on DMARCbis, was draft-ietf-dmarc-psd

Jane Moneypenny <jane.moneypenny@protonmail.com> Thu, 05 March 2020 15:34 UTC

Return-Path: <jane.moneypenny@protonmail.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 286DF3A1676 for <dmarc@ietfa.amsl.com>; Thu, 5 Mar 2020 07:34:49 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=protonmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bY9f46hIGcEl for <dmarc@ietfa.amsl.com>; Thu, 5 Mar 2020 07:34:45 -0800 (PST)
Received: from mail-40130.protonmail.ch (mail-40130.protonmail.ch [185.70.40.130]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 618043A1675 for <dmarc@ietf.org>; Thu, 5 Mar 2020 07:34:45 -0800 (PST)
Date: Thu, 05 Mar 2020 15:34:30 +0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=default; t=1583422481; bh=1mOSn8WWUawfj47UaQLQ24y6+I36nYStdu7tdcSau6Y=; h=Date:To:From:Cc:Reply-To:Subject:In-Reply-To:References: Feedback-ID:From; b=OpZzr33SdA9jWN9ixQVcyGsGi1AYFZYmDog7i32QHjCXotPIilJCvFjObeu8oxPd1 RpuBOgZXzJyhfeVU58Jq+bd70sPeJhJK0PLf99M5SLo1frmV/8mGGBZ/JpCDWZF2G3 uhzV81Ewmr85N8o4ZlLc+0o4NIvPrdQhYiBwNolU=
To: Alessandro Vesely <vesely@tana.it>
From: Jane Moneypenny <jane.moneypenny@protonmail.com>
Cc: "dmarc@ietf.org" <dmarc@ietf.org>
Reply-To: Jane Moneypenny <jane.moneypenny@protonmail.com>
Message-ID: =?utf-8?q?=3C5W7o8wEDzKkO=5FXN-2FP=5F5cR7XtYYQrQThd7gAIV7FDxZmkV?= =?utf-8?q?kpfIH4-kPrb-s4iV-TnHS-M1F7J80g=5FobImMUM3kYe4Vhw6fF1c8uIs9ZjsM=3D?= =?utf-8?q?=40protonmail=2Ecom=3E?=
In-Reply-To: =?utf-8?q?=3CPrnGuaFhe0l3-5rQTDR3imYwIlxCWS7P5ZNgccOlX2yyRwDVcj?= =?utf-8?q?j9eySBuvX9jqhMl0sVIVRHehaCX9ATLc=5FhnZ0c2BwMDHtyB2BzKBz16f0=3D=40?= =?utf-8?q?protonmail=2Ecom=3E?=
References: <728d7df1-d563-82f4-bfb3-a65a75fdd662@gmail.com> <2197062.EyKCtXoLNb@l5580> <CAJ4XoYdgHD7O8wzv1J-=qC_M7-r32Z_UxHakTZWbMFOAU5OSjA@mail.gmail.com> <9467613.0cjHueyR6G@l5580> <CAL0qLwb-9OMzp=JAfDKsALEFY0T8zEWg9LOnfQSPNaJcpfL8rw@mail.gmail.com> <f1bbfc6b-a20f-5cb0-0e65-aee2c1a32536@tana.it> =?utf-8?q?=3CPrnGuaFhe0l3-5r?= =?utf-8?q?QTDR3imYwIlxCWS7P5ZNgccOlX2yyRwDVcjj9eySBuvX9jqhMl0sVIVRHehaCX9AT?= =?utf-8?q?Lc=5FhnZ0c2BwMDHtyB2BzKBz16f0=3D=40protonmail=2Ecom=3E?=
Feedback-ID: =?utf-8?q?maG8rBvbVesMvSttssIWvHvk4FVyIn95=5FQx9mK3VOL2K8=5F0Gp?= =?utf-8?q?4G9wiVKu5rDHO6CjG4Ix8q6os17SKjYvK8tHA=3D=3D=3AExt=3AProtonMail?=
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="b1_f5a998543402de02c8110b0f2f0f0777"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/cPB6nAFX96tHBSs3Xh2v4D1It1s>
Subject: Re: [dmarc-ietf] Comment on DMARCbis, was draft-ietf-dmarc-psd
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 05 Mar 2020 15:34:51 -0000

you have 2id, but you pay only for 1 id. I decrypt 1CA7DFBF

Press "Decrypt", paste the key into the "Decryptoin key" window, then
click the "Decrypt" button

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

Sent from ProtonMail Mobile

On Thu, Feb 13, 2020 at 11:25, Jane Moneypenny <jane.moneypenny=40protonmail.com@dmarc.ietf.org> wrote:

>> For a second issue, consider whether report generators should track policy
>> changes during the day and, in case, send multiple reports with different
>> PolicyPublished. Otherwise, PolicyPublished would be valid for only a part of
>> the reported rows, presumably the last. Is that acceptable?
>>
>
> Shall the "policy tracking" mechanism take into consideration:-
> - TTL,
> - DNS cache issues?
>
> Sent with ProtonMail Secure Email.
>
> ‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐
> On Thursday, February 6, 2020 7:44 PM, Alessandro Vesely <vesely@tana.it> wrote:
>
>> On Tue 04/Feb/2020 22:26:30 +0100 Murray S. Kucherawy wrote:
>>
>> > On Tue, Feb 4, 2020 at 1:20 PM Scott Kitterman sklist@kitterman.com wrote:
>> >
>> > > I agree on DMARCbis. I don't think advancing this draft has a significant
>> > > effect on that. Worst case, if DMARCbis is done before we can reach any
>> > > conclusions about PSD DMARC, then we publish DMARCbis without PSD DMARC in
>> > > it.
>>
>> +1, albeit I don't think DMARCbis arrives so quickly
>>
>> > I think we've always been assuming that PSD DMARC would be input to
>> > DMARCbis, so we were planning to start the latter but not close it until
>> > the former was completed. This is the first time I've seen a different
>> > suggestion.
>> > I'd love to hear more opinions about ordering of the work here. This seems
>> > like an ideal time to review and update our milestones.
>>
>> There are quite some issues about DMARC. Let me mention aggregate report
>> format first, as this brings out a third thing which can be done in parallel,
>> namely to publish http://dmarc.org/dmarc-xml/0.2.
>>
>> Various tweaks have been proposed, I think they're well summarized in
>> http://bit.ly/dmarc-rpt-schema
>>
>> For a second issue, consider whether report generators should track policy
>> changes during the day and, in case, send multiple reports with different
>> PolicyPublished. Otherwise, PolicyPublished would be valid for only a part of
>> the reported rows, presumably the last. Is that acceptable?
>>
>> Another case for sending multiple reports at once is on hitting size limits.
>> Is better to increase sending frequency instead? How to negotiate sending
>> frequency between report consumer's ri= and producer's conditions deserves some
>> discussion.
>>
>> I'm sure there's a bunch of other issues, and we should start to collect them.
>>
>> > > I don't see anything about PSD DMARC being inherently on the critical
>> > > path for DMARCbis. I suspect the current major obstacle to DMARCbis is
>> > > that the question of how to take the PSL out of the equation is unsolved,
>> > > despite one IETF WG that was supposed to be dedicated to the question.>>
>> > > I don't think not publishing PSD DMARC helps move DMARCbis forward, so I
>> > > think it's a false choice.>>
>> >
>> > I think what Dave proposed about PSL separation from DMARC is entirely
>> > appropriate and pragmatic, and in fact probably easy enough: DMARC is
>> > changed so that it says the organizational domain is determined using some
>> > process [currently] external to DMARC, and then a second document explains
>> > how that process is accomplished using the PSL (and/or PSD, depending on
>> > when the experiment result comes in). That's a fairly simple edit overall,
>> > and is actually probably minor and non-controversial compared to some of
>> > the other surgery that I believe is in the queue.
>>
>> +1, let DMARC core defineorganizational domain by characteristics. A second
>> document present a process, possibly demonstrating how the required
>> characteristics are met.
>>
>> Scott's I-D already outlines the characteristics of Branded and
>> Multi-organization PSDs, that the experimental processes are suited for.
>>
>> Best
>> Ale
>>
>> -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
>>
>> dmarc mailing list
>> dmarc@ietf.org
>> https://www.ietf.org/mailman/listinfo/dmarc
>
> _______________________________________________
> dmarc mailing list
> dmarc@ietf.org
> https://www.ietf.org/mailman/listinfo/dmarc