[dmarc-ietf] DMARCbis Privacy Considerations was: Re: I-D Action: draft-ietf-dmarc-dmarcbis-17.txt
Scott Kitterman <sklist@kitterman.com> Mon, 29 August 2022 16:27 UTC
Return-Path: <sklist@kitterman.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 104D9C1526ED for <dmarc@ietfa.amsl.com>; Mon, 29 Aug 2022 09:27:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.106
X-Spam-Level:
X-Spam-Status: No, score=-2.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=neutral reason="invalid (unsupported algorithm ed25519-sha256)" header.d=kitterman.com header.b=+rQj5VYS; dkim=pass (2048-bit key) header.d=kitterman.com header.b=eDjfk1vD
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3No4nWOQW_yl for <dmarc@ietfa.amsl.com>; Mon, 29 Aug 2022 09:27:15 -0700 (PDT)
Received: from interserver.kitterman.com (interserver.kitterman.com [IPv6:2604:a00:6:1039:225:90ff:feaa:b169]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D97B8C14CE2F for <dmarc@ietf.org>; Mon, 29 Aug 2022 09:27:15 -0700 (PDT)
Received: from interserver.kitterman.com (interserver.kitterman.com [IPv6:2604:a00:6:1039:225:90ff:feaa:b169]) by interserver.kitterman.com (Postfix) with ESMTPS id DE32CF802FC for <dmarc@ietf.org>; Mon, 29 Aug 2022 12:27:11 -0400 (EDT)
DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/simple; d=kitterman.com; i=@kitterman.com; q=dns/txt; s=201903e; t=1661790431; h=from : to : subject : date : message-id : in-reply-to : references : mime-version : content-transfer-encoding : content-type : from; bh=wDLTQ0ZxLx/1VPNYU8/dJLfOBp2HhB4/BuVd133uaaw=; b=+rQj5VYS01w2aWJcIaH1OrJZNSK0zOCjsbmkKMkDkeo2Bn0oDhAI14rvST3do01mI4GzS 6DWY7nJMZ5ePpMaCg==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kitterman.com; i=@kitterman.com; q=dns/txt; s=201903r; t=1661790431; h=from : to : subject : date : message-id : in-reply-to : references : mime-version : content-transfer-encoding : content-type : from; bh=wDLTQ0ZxLx/1VPNYU8/dJLfOBp2HhB4/BuVd133uaaw=; b=eDjfk1vDa819vedsV2micntX6gDrWDzm58IOB5CCoMxIOBsE5LQE6nl49mOd8ioz8K1fu qsUmOiEECVEvXlenm4WBGXIQ9o3gqg70jF1RC2eeE5F9SBKDZ76A1Ud7vHz82JNRT+2TAbj fVJ0tuyOztV77r3LkoWQYp9Ujhodc3kml4GyxrtoJFreMqpGHLBBHM658WpyFvnPu/o6ijD SXcqcogi/OBNSM6aSb1WUD9fp6LNtRsXw0Ko1wjN2mDPd2Hs89yLKl3gV3jsk7MsmKEWhbl Bu8XU9I2GTHFMCLSDrA2PYk8/6B17a7hHKutDku/b5VZqO8c9Y28Wvu6VkLA==
Received: from zini-1880.localnet (static-72-81-252-22.bltmmd.fios.verizon.net [72.81.252.22]) by interserver.kitterman.com (Postfix) with ESMTP id C883AF80153 for <dmarc@ietf.org>; Mon, 29 Aug 2022 12:27:11 -0400 (EDT)
From: Scott Kitterman <sklist@kitterman.com>
To: dmarc@ietf.org
Date: Mon, 29 Aug 2022 12:27:11 -0400
Message-ID: <2969398.fzCzL4EFEC@zini-1880>
In-Reply-To: <4015891.JFzxAWuYz4@zini-1880>
References: <166178507559.47631.2900016221052924761@ietfa.amsl.com> <CAHej_8nEFt17qatTm+UYf0gsuj6z3d317+56wazOgicCSKN8Lg@mail.gmail.com> <4015891.JFzxAWuYz4@zini-1880>
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/oI9_UldUPPA5XVPPx6sK6_CiBVo>
Subject: [dmarc-ietf] DMARCbis Privacy Considerations was: Re: I-D Action: draft-ietf-dmarc-dmarcbis-17.txt
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 29 Aug 2022 16:27:20 -0000
On Monday, August 29, 2022 11:09:50 AM EDT Scott Kitterman wrote: > On Monday, August 29, 2022 10:59:55 AM EDT Todd Herr wrote: > > Version created from the pull request John mentioned on-list on August 28. > > Thanks. ... > > Also, I am reminded that since this document will obsolete RFC 9091 if > approved, we need to incorporate the Privacy Considerations from that > document instead of referencing them. I'll prepare a recommend change for > that. I looked into this a bit and it turns out to be more complicated than I expected. Currently DMARCbis has no Privacy Considerations section at all. Generally, I think this is correct since the DMARC relevant privacy issues are tied to reporting, which is in separate drafts. I do think though that since we are covering all aspects of DMARC record publishing in DMARCbis, there are a few specifics that should go in the main draft with pointers to the reporting drafts for relevant details. RFC 9091 Privacy Considerations (which are currently incorporated by reference in DMARCbis) say that for PSDs, feedback MUST be limited to Aggregate Reports. I think it would be appropriate that DMARCbis have a short Privacy Considerations section which points out that putting an rua or ruf tag in your DMARC record may have privacy implications for organizations with pointers to the reporting drafts for details. I would include something like if psd=y, MUST NOT also have an ruf= value in DMARCbis. The bulk of the RFC 9091 Privacy Considerations text would then go in I- D.ietf-dmarc-aggregate-reporting. All that would be needed in I-D.ietf-dmarc- aggregate-reporting Privacy Considerations is a relatively simple admonition to not send failure reports for PSDs. If that seems reasonable to people, I'll prepare specifics for review. Scott K
- [dmarc-ietf] I-D Action: draft-ietf-dmarc-dmarcbi… internet-drafts
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-dma… Todd Herr
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-dma… Scott Kitterman
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-dma… Todd Herr
- [dmarc-ietf] DMARCbis Privacy Considerations was:… Scott Kitterman
- Re: [dmarc-ietf] DMARCbis Privacy Considerations … Alessandro Vesely
- Re: [dmarc-ietf] DMARCbis Privacy Considerations … Scott Kitterman
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-dma… John Levine
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-dma… John R. Levine
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-dma… Scott Kitterman
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-dma… John R. Levine
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-dma… Todd Herr
- Re: [dmarc-ietf] I-D Action: draft-ietf-dmarc-dma… Scott Kitterman
- Re: [dmarc-ietf] DMARCbis Privacy Considerations … Scott Kitterman
- Re: [dmarc-ietf] DMARCbis Privacy Considerations … Alessandro Vesely
- Re: [dmarc-ietf] DMARCbis Privacy Considerations … John Levine
- Re: [dmarc-ietf] DMARCbis Privacy Considerations … Barry Leiba
- Re: [dmarc-ietf] DMARCbis Privacy Considerations … John R Levine
- Re: [dmarc-ietf] DMARCbis Privacy Considerations … Scott Kitterman
- Re: [dmarc-ietf] DMARCbis Privacy Considerations … Tim Wicinski
- Re: [dmarc-ietf] DMARCbis Privacy Considerations … Alessandro Vesely
- Re: [dmarc-ietf] DMARCbis Privacy Considerations … John R. Levine
- Re: [dmarc-ietf] DMARCbis Privacy Considerations … Douglas Foster