IETF Logo Mail Archive

Re: [dmarc-ietf] Extensions in Aggregate Reporting - Feedback Requested

Trent Adams <tadams@proofpoint.com> Fri, 04 June 2021 15:45 UTC

Return-Path: <tadams@proofpoint.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A39F63A16FB for <dmarc@ietfa.amsl.com>; Fri, 4 Jun 2021 08:45:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=proofpoint.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ixtllzv2_GB8 for <dmarc@ietfa.amsl.com>; Fri, 4 Jun 2021 08:45:14 -0700 (PDT)
Received: from mx0a-00148503.pphosted.com (mx0a-00148503.pphosted.com [148.163.157.21]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A2E0F3A16FA for <dmarc@ietf.org>; Fri, 4 Jun 2021 08:45:14 -0700 (PDT)
Received: from pps.filterd (m0162103.ppops.net [127.0.0.1]) by mx0a-00148503.pphosted.com (8.16.1.2/8.16.1.2) with SMTP id 154E6IBx005324; Fri, 4 Jun 2021 08:45:12 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=proofpoint.com; h=from : to : subject : date : message-id : references : in-reply-to : content-type : content-id : content-transfer-encoding : mime-version; s=corp-2019-08-07; bh=VMsE5BaWvQvQM3MRNJ/MmwE4byjo4oSX8grc5TiXrKE=; b=e19LDgnmRaj7kAmJTDfLXkmjZYEs5J5vkXoI07qirBpaCqK6sS1oMQToNugaAtmPPHhi 89dEbODEoSpFIOfcWzR56SWaKt7oQXnXI6eDRwhuIto46yGQ1eLynLAAPfvz+opG27Pt 26za7NVqs9n6CRDDhh+lfUYj0JPHnnTTsj3zZ2uue9L17/QnYusOxcyhmg3Ex6W1yWlG Wgxa9TU+h7L+lwePxZ4WL3/yUg193bpYlYGAOdIf5iGl7SVI+zzwY0U/NoB4jM1yzP5l 1IUFQsYZP3iPvzbxQr93jwjp2B9fK+bOG5VCGqeKRmGdSZW1+2pVNYzc39/YMrulEvEr 3g==
Received: from lv-exch01.corp.proofpoint.com (spf-mailers.proofpoint.com [136.179.16.100]) by mx0a-00148503.pphosted.com with ESMTP id 38y8sb88vt-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Fri, 04 Jun 2021 08:45:12 -0700
Received: from lv-exch06.corp.proofpoint.com (10.19.10.26) by lv-exch01.corp.proofpoint.com (10.94.30.37) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.2176.2; Fri, 4 Jun 2021 08:45:11 -0700
Received: from lv-exch02.corp.proofpoint.com (10.94.30.38) by lv-exch06.corp.proofpoint.com (10.19.10.26) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.2176.2; Fri, 4 Jun 2021 08:45:11 -0700
Received: from NAM11-BN8-obe.outbound.protection.outlook.com (10.19.16.20) by lv-exch02.corp.proofpoint.com (10.94.30.38) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.2176.2 via Frontend Transport; Fri, 4 Jun 2021 08:45:11 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=eIkFJXvxWkCB5Vm6UyY7kwBNdInrmXjw14tzgELxqqBjrwl1/HmnLFylSv6ordfWHHks3PL0pnUhi7710YMHBzs54qsCxE1MG7PCcrHwhQmGeRWUfEWKJH9LlbtCCJ8fv7mkZa7vUx+/xUFdYkB0lpHMg523BXKmlmWqMUo4WuLPAfNEWz6Ds0ANDSNpGOYBytB8YlqtXcvZ4dLK4y93J0x8HC6RRrYE6KlZShZEBdMDpBK8tMWkcc/zEglNz9TDGmQpu3AaW1JjwBJo1/ti+eBbUkdLnV9dxWA6Vhs8fyyMTMSdBVEkmbKQN/QHHiLAx+jA95D6rtrlUBUEIlbCrw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=VMsE5BaWvQvQM3MRNJ/MmwE4byjo4oSX8grc5TiXrKE=; b=TXaxW3xnBKgt2uIWgH16i72Y5o21+Y138fZ5bWmXhcI/VprbGu6mbyM5cGennn8I/KwHMO8iked+ZCWkeJ6Go37uOXI2KvhvYibpMotQymrM13/Weak5Ka4dmpcTVYIPcQxJnxk/xl5Ce0+V+1Jzv4xltPwS/9erZIciXcIv/ZXa/uEZDpustooWJZhUNxNQjhEUoeQHABLDYYZ8TAyX8YmYtb9XewEn0sRGsBaDvV2/hpFudKMQaun2qJdXFdHD3oS35FnXwrQYJurTrSioQsMtMbnh/6gyueVE0SmkFdpXioyiy+IkDUWyAM+NLQcFwPP3rxvu7vLpQUDpmSdAfg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=proofpoint.com; dmarc=pass action=none header.from=proofpoint.com; dkim=pass header.d=proofpoint.com; arc=none
Received: from CY4PR12MB1782.namprd12.prod.outlook.com (2603:10b6:903:123::21) by CY4PR12MB1448.namprd12.prod.outlook.com (2603:10b6:910:f::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4173.29; Fri, 4 Jun 2021 15:45:08 +0000
Received: from CY4PR12MB1782.namprd12.prod.outlook.com ([fe80::1425:9bd7:ee4a:2559]) by CY4PR12MB1782.namprd12.prod.outlook.com ([fe80::1425:9bd7:ee4a:2559%8]) with mapi id 15.20.4195.025; Fri, 4 Jun 2021 15:45:08 +0000
From: Trent Adams <tadams@proofpoint.com>
To: Alessandro Vesely <vesely@tana.it>, "dmarc@ietf.org" <dmarc@ietf.org>
Thread-Topic: [dmarc-ietf] Extensions in Aggregate Reporting - Feedback Requested
Thread-Index: AddYdpfWt/LpopsnRqmW8ZVx8+CfOwArR8sAAACltAA=
Date: Fri, 04 Jun 2021 15:45:08 +0000
Message-ID: <DEC4098D-0D74-4AB0-A390-688D0A32DF50@proofpoint.com>
References: <MN2PR11MB4351A6C5A477DB006CB6DD72F73C9@MN2PR11MB4351.namprd11.prod.outlook.com> <f04b1dfa-2707-a67e-4df8-bf82d637f4f8@tana.it>
In-Reply-To: <f04b1dfa-2707-a67e-4df8-bf82d637f4f8@tana.it>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.49.21050901
authentication-results: tana.it; dkim=none (message not signed) header.d=none;tana.it; dmarc=none action=none header.from=proofpoint.com;
x-originating-ip: [2601:283:4700:8dc0:91aa:d789:b6f5:9865]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 052d103a-7638-4323-1d45-08d9276fbb61
x-ms-traffictypediagnostic: CY4PR12MB1448:
x-microsoft-antispam-prvs: <CY4PR12MB14484599E95C99CC5F814B67B33B9@CY4PR12MB1448.namprd12.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: sodCMn6t2mPGVRDjmVj+SJtArRGl6UhfiW0SRnpwHWA1UjedNuZm3+4jyjQ/rABuhtv8yszMO6TlUPjn4+sPXQVhrgn52/UUEPC+iBVPmWpBxLUzduErAXjBVJUtFvT10ydkZKqBi2zAUaE/UNGfiLwVfaxUgN7eqhFLH8MxOmv2FOgza0ZVnh+zAb/trLff32Ykn5FQnM3NZKlQW5AZFarcdKFuDjhTaUnzYr/fYvO5d2EMCxOf1lWLv84w1K2Vxw1HyWDyDM49ejFZ62zLI0NeV4Ri2kWsXpHAMqcWXk9ceWXG1Kz5tekETIxXKbUpu24kO7UFcF5D5QUhhD5oilx74WzTjwX2iVtnJI/eAo4g2pTWD1yfjCuoRfBOoNcuH/3HNZq99dfgzWLCi8xr18fKgE5QHPNBETuVZ6loIluT/GSLd7ot/ay8cTb5ilnlS98BAKVIsBJBRAGrCqyAnn3nB1/AJjkLDwJT2EPTNQ0neDmJeMKPsxnv6dEqa1qOITJXOi0NRsU/He1CKrsL56H5aAE3SWftNAWM55wP15y1MAlXztpqCcbtrbHqQvGu6kt48MjM9vIHeDmdn5RVLtP+UBCS4VIckFaN0x+7Nsy0GVYfySuMsAQMkzzXmfkd/E+6w02CZ09OXntRB2aT+UkW0rTbdpOZMNTe2G7jvFaWCUHZgGtTI5Q8bKItigZtFLChV4O5g7Wdv8aWIJ7t5gX4IPf3NjSUiJqf/YN/HjQ+rWSR1ev4BXSf4thwFWyLWdWE3Nj8Cdl+K7Q07u8D6La954M8g2rXA9unY0ytjbnAiR/2zG4aV1lpkH1/tHMY
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CY4PR12MB1782.namprd12.prod.outlook.com; PTR:; CAT:NONE; SFS:(366004)(39850400004)(136003)(346002)(396003)(376002)(66476007)(66556008)(66946007)(64756008)(66446008)(2906002)(76116006)(86362001)(6512007)(478600001)(33656002)(966005)(316002)(36756003)(8936002)(83380400001)(110136005)(5660300002)(8676002)(6486002)(2616005)(186003)(71200400001)(38100700002)(122000001)(6506007)(45980500001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <1C64A36EBE3E1D41BD3DBFECC455029C@namprd12.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CY4PR12MB1782.namprd12.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 052d103a-7638-4323-1d45-08d9276fbb61
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 Jun 2021 15:45:08.6903 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 46785c73-1c32-414b-86bc-fae0377cab01
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 98rEne6IG7FY65XqDV0VNii6pSf6F7nROw9Xtc6in8BWjtSNm7XDzb9q5/fom8yhwgiQ+pB0F+cZS+DUl0Z/JQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY4PR12MB1448
X-PassedThroughOnPremises: Yes
X-OriginatorOrg: proofpoint.com
X-Proofpoint-GUID: bIgkvVudJlwmgUqe_rSfBx1FVpZCOmQd
X-Proofpoint-ORIG-GUID: bIgkvVudJlwmgUqe_rSfBx1FVpZCOmQd
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.182.1,Aquarius:18.0.761,Hydra:6.0.391,FMLib:17.0.607.475 definitions=2021-06-04_08,2021-06-04_01,2020-04-07_01
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 spamscore=0 clxscore=1011 mlxlogscore=999 lowpriorityscore=0 suspectscore=0 bulkscore=0 priorityscore=1501 mlxscore=0 impostorscore=0 malwarescore=0 phishscore=0 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2104190000 definitions=main-2106040114
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/fHXCABvWnjnHBVtwM7ogiVS1Cl4>
Subject: Re: [dmarc-ietf] Extensions in Aggregate Reporting - Feedback Requested
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 04 Jun 2021 15:45:20 -0000

I agree with Alessandro's suggestions, and really like the flexibility of self-labeled elements so they can be located where appropriate rather than forcing all extensions into a single bucket.

My $0.02,
Trent


On 6/4/21, 3:27 AM, "dmarc on behalf of Alessandro Vesely" <dmarc-bounces@ietf.org on behalf of vesely@tana.it> wrote:

    On Thu 03/Jun/2021 14:47:21 +0200 Brotman, Alex wrote:
    > 
    > During our interim call last week the topic of extensions within the DMARC aggregate report came up.  There was a discussion about how to best introduce these, but also how they might be best used.  I noted three cases that I could see today; ARC, PSD, and BIMI.   And indeed we have tickets relating to the first two.  The original thought was that the aggregate draft would allow a place for extensions, and then additional drafts would define those within the IETF.  When -02 was originally being worked on, there was a thread about how we might like to see this, though not many responses.  The result is in section 4 of the -02 draft [1].


    I have some comments about that attempt.  First, it shows extensions right below <feedback>, while it seems more useful to have them as child of <record>.  Second, I'm not sure we need an <extensions> container.  I'd go for an example like, say, so:

    <feedback xmlns="https://urldefense.com/v3/__http://ietf.org/xml-namesapaces/dmarc-xml/1.0__;!!ORgEfCBsr282Fw!6SA4ihYzl7xfKdVfYDefKIsr4PotRb5Nkjs2hXHPyIU5KTpmffBFLkJEKqvwSJvF$ ">
        <report_metadata>
           ...
        </report_metadata>
        <policy_published>
           ...
        </policy_published>
        <extension_metadata name="bimi" xmlns="https://urldefense.com/v3/__http://ietf.org/xml-namesapaces/bimi-xml?*1.0__;Lw!!ORgEfCBsr282Fw!6SA4ihYzl7xfKdVfYDefKIsr4PotRb5Nkjs2hXHPyIU5KTpmffBFLkJEKvQ2pQn-$ ">
           ...
        </extension_metadata>
        <record>
           <row>
              ...
           </row>
           <identifiers>
              ...
           </identifiers>
           <auth_results>
              ...
           </auth_results>
              ...
           <extension name="bimi" xmlns="https://urldefense.com/v3/__http://ietf.org/xml-namesapaces/bimi-xml?**A1.0__;Py8!!ORgEfCBsr282Fw!6SA4ihYzl7xfKdVfYDefKIsr4PotRb5Nkjs2hXHPyIU5KTpmffBFLkJEKtkFNC6p$ ">
              ...
           </extension>
        </record>
        <record>
           ...
        </record>
    </feedback>


    Third, we need to grasp how XML grammars can be composed, and insert it in Appendix A.


    >  At the time, I didn't intend to limit the extensions to IETF-approved extensions, though wasn't sure how else this might be used by reporting entities (I mentioned domain reputation-ish things during the call).  I'd consider that if we don't enforce IETF-registered extensions, the receivers could still ignore extensions they don't want to handle.


    I assume no one reads the XML directly, except for debugging.  If report consumers don't know about an extension, its content will never reach human eyeballs.  Extension existence will have to be advertised, and a IANA page could be a decent means of doing that.


    >  I'm also aware this could bloat a report in terms of size, though we've already indicated we don't seem overly concerned with the size of the XML body.  A few things I'd like to see the group reach consensus on are:
    > 
    > 1) Extensions in their own section (as it is now) or within each <row> element


    Both, and both optional.  An extension can have some data to add in some <record>, but not necessarily in all of them.


    > 2) Must extensions be IETF-approved


    We cannot stop non-registered extensions.  Yet, developers may want to see an RFC before implementing code that extracts a given extension's content.


    > 3) If (2) is true, do we want to define any during the DMARCbis process (essentially a demonstration of how it is to be done)


    It would be a good way to show how to define them.  Not our primary task, though.


    Best
    Ale
    -- 

    > 1: https://urldefense.com/v3/__https://datatracker.ietf.org/doc/html/draft-ietf-dmarc-aggregate-reporting-02*section-4__;Iw!!ORgEfCBsr282Fw!6SA4ihYzl7xfKdVfYDefKIsr4PotRb5Nkjs2hXHPyIU5KTpmffBFLkJEKtSg8JaH$ 



















    _______________________________________________
    dmarc mailing list
    dmarc@ietf.org
    https://urldefense.com/v3/__https://www.ietf.org/mailman/listinfo/dmarc__;!!ORgEfCBsr282Fw!6SA4ihYzl7xfKdVfYDefKIsr4PotRb5Nkjs2hXHPyIU5KTpmffBFLkJEKn_Uzf5Y$

v2.23.0 | Report a Bug | By Email