Re: [dmarc-ietf] Charter improvements
Mike Jones <mjones@agari.com> Wed, 17 July 2013 05:19 UTC
Return-Path: <mjones@agari.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4676321F9AD6 for <dmarc@ietfa.amsl.com>; Tue, 16 Jul 2013 22:19:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.598
X-Spam-Level:
X-Spam-Status: No, score=-2.598 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HF6k1imVzg08 for <dmarc@ietfa.amsl.com>; Tue, 16 Jul 2013 22:19:49 -0700 (PDT)
Received: from mail-pa0-x231.google.com (mail-pa0-x231.google.com [IPv6:2607:f8b0:400e:c03::231]) by ietfa.amsl.com (Postfix) with ESMTP id AFF7421F9A05 for <dmarc@ietf.org>; Tue, 16 Jul 2013 22:19:49 -0700 (PDT)
Received: by mail-pa0-f49.google.com with SMTP id ld11so1558330pab.22 for <dmarc@ietf.org>; Tue, 16 Jul 2013 22:19:49 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=agari.com; s=s1024; h=from:content-type:message-id:mime-version:subject:date:references :to:in-reply-to:x-mailer; bh=jeEbx1KF+aTcAnFkZWraRUv7Qr6hVdWA28zIGznxG6w=; b=oeiFMxXtT6Ex36+4CNvdVsOxLWUv+P35Gmv5eWXdfBQUd96s4rl26IBK8YJR7mq6n4 bjrK9fLP6jIzLaH4TLRQ62JnKnirzPZFChGFcvd7Z9osY6xQJ1QULdPxtgziZyj6EpJz E36Wg5RMrZyTghogOPGpWNy2xNlG+dK2R0d0M=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=from:content-type:message-id:mime-version:subject:date:references :to:in-reply-to:x-mailer:x-gm-message-state; bh=jeEbx1KF+aTcAnFkZWraRUv7Qr6hVdWA28zIGznxG6w=; b=iQfA77zSf5p28ci4lfeC1QBT39v17hoGATYBdCGxMfwY56ZLDkSE6I9w3ieooUyl70 8YX5QVe4cXGLAP3+IBb1DzjVFCJAyVXTD3EV2yLtmbuD5xrpOnGgme6P70DqiLZzCuwV 0jBemyekGbInVqY6LZ9TFbjEsS2mTdk/wccT1kwDYqlXWtHCHV1h1zyClp7DJ8pLB5c9 s3u667dLVSXdGT2DuHsEXxIrKeybgu6DwfIQmsHOJ5cPNUriWV534SME8XD4KLSrMyzt JFB1PMjHVq9QhR8NvoVn2GOGkdoZ47mW0crmUgRG5bsAvevtPtTXb7qTJrOkjErPcU1V McTg==
X-Received: by 10.68.251.234 with SMTP id zn10mr4824887pbc.188.1374038389221; Tue, 16 Jul 2013 22:19:49 -0700 (PDT)
Received: from [192.168.0.14] (c-24-4-3-179.hsd1.ca.comcast.net. [24.4.3.179]) by mx.google.com with ESMTPSA id ht5sm5551649pbb.29.2013.07.16.22.19.47 for <multiple recipients> (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Tue, 16 Jul 2013 22:19:48 -0700 (PDT)
From: Mike Jones <mjones@agari.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_83F3FD39-27C9-4A47-B7B1-19BDC9E07DC4"
Message-Id: <CD984070-5B0E-48FE-96D4-8C49CA1CC9B0@agari.com>
Mime-Version: 1.0 (Mac OS X Mail 6.5 \(1508\))
Date: Tue, 16 Jul 2013 22:19:46 -0700
References: <20130702052746.15876.qmail@joyce.lan> <51D3464D.2060502@sonnection.nl> <0A91244B-1CAE-491A-865B-E2BA64AFB366@tnpi.net> <51E56928.4020207@gmail.com>
To: "J. Trent Adams" <jtrentadams@gmail.com>, "dmarc@ietf.org" <dmarc@ietf.org>
In-Reply-To: <51E56928.4020207@gmail.com>
X-Mailer: Apple Mail (2.1508)
X-Gm-Message-State: ALoCoQm8NZj4ceorSPsRe068u8A5l+Jg2yL3sCLMCuP4T8FYZP5jpuaJE3uy+OynutSNz33bxyWF
Subject: Re: [dmarc-ietf] Charter improvements
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dmarc>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 17 Jul 2013 05:19:51 -0000
On Jul 16, 2013, at 8:39 AM, J. Trent Adams <jtrentadams@gmail.com> wrote: > > Thanks, everyone, for their input on this thread (and to John for the > pointer how to get back to land when I blundered into the wrong stream). > Editing the proposed charter is a lot easier with this feedback. > > From what I can tell, the most important question needing to be answered > is whether or not revising the base DMARC specification is within scope > of the proposed work group. Following Russ's guidance, it seems that we > should start from the assumption that it's not in scope for now given > the fact that it's being sponsored by an AD as an Individual Submission. > > Regardless of whether that's the right path, or not, let's explore it as > an option and see how the rest of the items identified in the proposed > charter play out. Then we can leverage the outcome of the conversation > to potentially revisit the fate of the base specification itself. > > Given that guidance, here're the most obvious (and noncontroversial?) > items needing to be done to shore up the proposed charter: > > * Correct the text regarding the current path of the specification. > * Tone down the "marketing puffery". > * Clarify how to address "backward compatibility" with the installed base. > > I've already updated the description of the current path of the base > specification from "Independent Submission" to "Individual Submission", > so that's one down. I'll pull out my red pen on the other two topics and > see if I can make them more reasonable. +1 > > Skipping ahead. . . here're the items that have previously been proposed > as worth exploring in the setting of an IETF work group: > > ----- > * a mechanism for determining the organizational domain name based on an > arbitrary fully-qualified hostname > ----- > > If I'm not mistaken, the Apps Area WG has already expressed an interest > in this work. In that case, I believe that this WG would only need to > track that effort and ensure that its work addresses the use cases > required to support DMARC. > > QUESTION: Given that it's an important topic, and there's no guarantee > that the other effort will result in an applicable solution, would it > still be reasonable to include a mention of this as worth exploration? > If so, it'd probably make sense to reference the other work as a > starting point to clarify we're not planning to spin up a competing > solution. I think if it is expected to be addressed by another WG then only a reference to that work is appropriate. I think even a mention of exploring it in this DMARC WG would be overreaching. > > ----- > * a mechanism for detecting abuse involving the <display-name> portion > of the RFC5322.From field > ----- > > This is an interesting item in that there have been some proposals from > contributors to the base DMARC specification to address this. The > proposals, as you can see, didn't make it through to a consensus and it > was suggested that they be brought to the broader community for > consideration. It's highly likely that through the WG process we're able > to identify a means by which this issue can be addressed. > > QUESTION: Does it make sense for this proposed WG to explore how the > base specification can be extended to apply the same level of > "identifier alignment" to the <display-name> as is helping defend the > <address-spec>? > Yes, this would be a worthwhile discussion for a DMARC WG. Maybe it is unlikely that a means to address this is identified as an extension to DMARC, but it's a real problem and worth the effort to discuss. > ----- > * a mechanism for mitigating the effect of failures of DMARC policy when > a message transits a mailing list > ----- > > I recognize that there's definitely a counter-pressure against including > this topic as it seems to be a potentially quixotic quest. That being > said, even if we don't find the perfect solution, it does seem > reasonable to believe there is a way to provide something more than > nothing that does help in some meaningful way. I'm not presupposing a > solution, just that there have been a few possible options discussed at > the edges which are likely to be worth more rigorous exploration. > > QUESTION: Is there value in a WG such as this exploring possible > solutions to this issue and developing guidance that would potentially > help improve the utility of the base DMARC specification? > Yes, I believe so. > ----- > * support for the notion of transitive trust (i.e., "host X trusted the > sender of this message, and I trust X, so you should too") > ----- > > I see this as similar to the above, but potentially more broadly > applicable. One tweak I'd offer would be to replace ", so you should > too" with something like ", so you could choose to as well". > > QUESTION: Is there value in a WG such as this exploring possible > solutions to this issue and developing guidance that would potentially > help improve the utility of the base DMARC specification? This one is a maybe for me. I could see value in the discussion, but think it is far less likely a WG reaches any consensus on this than on the previous two items. > > ----- > * more robust transport of reports > ----- > > After over a year of deployment, and the rise in support services > handling reports, many folks have suggested that it would be worth > exploring how to offer additional optional means of transport for > reports. The base DMARC specification provides for this, but it is an > area that was left to be extended by a group such as this. > > QUESTION: Is this an area of exploration that is of enough interest to > include in the charter for this proposed work group? Yes. > > Beyond those, the topics in the proposed "Using DMARC" document have > already proven useful in clarifying some options that aren't typically > included in a base specification. For example, here a few items that may > benefit from being specifically called out in the charter as worth > exploring: > > * Identifier alignment configuration options > * Implementation decisions regarding "pct" > * Determining effective RUA sending frequency > * Leveraging policy caching > * Various options for integrating within an existing flow > * Defining a useful, common set of RUA reporting options > * When and how to use local policy override options > > QUESTION: Do any items on this list seem to be worth specifically adding > to the proposed charter as examples of the type of work that would be > useful? > Yes to all of the items on the list from the "Using DMARC" document. > Finally, this list of potential work items was developed a while ago, > and it's likely additional possible areas of exploration have surfaced > since then. Are there any other substantive items that would be worth > adding to the list? Keeping in mind, of course, that our first cut will > be to assume that the base specification isn't in scope for now. > > Once the dust settles a bit around these items, I'll take another whack > at the charter text to at least get it stable for now. Then we can > bubble up the bigger question and see if we can tackle that given the > input I've seen recently on other threads. > > Thanks again, > Trent > Thanks, Mike Jones Agari mjones@agari.com
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Dave Crocker
- [dmarc-ietf] DMARC BoF at IETF 87, Berlin Barry Leiba
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Russ Housley
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin J. Trent Adams
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin John Levine
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Dave Crocker
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Russ Housley
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Scott Kitterman
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Barry Leiba
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Franck Martin
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Scott Kitterman
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin John Levine
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Scott Kitterman
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Franck Martin
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin John Levine
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Franck Martin
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin John R Levine
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Dave Crocker
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin John Levine
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Dave Crocker
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin John R Levine
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Scott Kitterman
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Dave Crocker
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Dave Crocker
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin John R Levine
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Scott Kitterman
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Scott Kitterman
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Dave Crocker
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Scott Kitterman
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Dave Crocker
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Dave Crocker
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Murray S. Kucherawy
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Scott Kitterman
- Re: [dmarc-ietf] Charter improvements John Levine
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Murray S. Kucherawy
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Scott Kitterman
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Dave Crocker
- Re: [dmarc-ietf] Charter improvements Dave Crocker
- Re: [dmarc-ietf] DMARC BoF at IETF 87, Berlin Barry Leiba
- Re: [dmarc-ietf] Charter improvements John Levine
- Re: [dmarc-ietf] Charter improvements Dave Crocker
- Re: [dmarc-ietf] Charter improvements John Levine
- Re: [dmarc-ietf] Charter improvements Dave Crocker
- Re: [dmarc-ietf] Charter improvements Rolf E. Sonneveld
- Re: [dmarc-ietf] Charter improvements Dave Crocker
- Re: [dmarc-ietf] Charter improvements Matt Simerson
- Re: [dmarc-ietf] Charter improvements SM
- Re: [dmarc-ietf] Charter improvements J. Trent Adams
- Re: [dmarc-ietf] Charter improvements Dave Crocker
- Re: [dmarc-ietf] Charter improvements MH Michael Hammer (5304)
- Re: [dmarc-ietf] Charter improvements Scott Kitterman
- Re: [dmarc-ietf] Charter improvements Kurt Andersen
- Re: [dmarc-ietf] Charter improvements Kelley, John
- Re: [dmarc-ietf] Charter improvements Dave Crocker
- Re: [dmarc-ietf] Charter improvements Mike Jones
- Re: [dmarc-ietf] Charter improvements Franck Martin
- Re: [dmarc-ietf] Charter improvements Barry Leiba
- Re: [dmarc-ietf] Charter improvements Dave Crocker
- Re: [dmarc-ietf] Charter improvements Roland Turner
- Re: [dmarc-ietf] Charter improvements Dave Crocker
- Re: [dmarc-ietf] Charter improvements Murray S. Kucherawy
- Re: [dmarc-ietf] Charter improvements Murray S. Kucherawy
- Re: [dmarc-ietf] Charter improvements Dave Crocker
- Re: [dmarc-ietf] Charter improvements Murray S. Kucherawy
- Re: [dmarc-ietf] Charter improvements Greg Colburn