[dmarc-ietf] Which DKIM(s) should be reported? (Ticket #38)

"Brotman, Alex" <Alex_Brotman@comcast.com> Mon, 25 January 2021 00:25 UTC

Return-Path: <Alex_Brotman@comcast.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 406963A0408 for <dmarc@ietfa.amsl.com>; Sun, 24 Jan 2021 16:25:21 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.2
X-Spam-Level:
X-Spam-Status: No, score=-0.2 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=comcast.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 65G9_uZnb679 for <dmarc@ietfa.amsl.com>; Sun, 24 Jan 2021 16:25:20 -0800 (PST)
Received: from mx0b-00143702.pphosted.com (mx0b-00143702.pphosted.com [148.163.141.77]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E6D0B3A03F2 for <dmarc@ietf.org>; Sun, 24 Jan 2021 16:25:19 -0800 (PST)
Received: from pps.filterd (m0156896.ppops.net [127.0.0.1]) by mx0b-00143702.pphosted.com (8.16.0.43/8.16.0.43) with SMTP id 10P0HWWU024561 for <dmarc@ietf.org>; Sun, 24 Jan 2021 19:25:19 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcast.com; h=from : to : subject : date : message-id : content-type : content-transfer-encoding : mime-version; s=20190412; bh=zsmLj1Qa8nx7OItVdwr9nEKA7/tpA+3OTxrqHr+xzhQ=; b=FEJmXxYMWPMotd/BJZIekj6qcaOIkuExXfc7Rg24bMfaiNK0fmFoBeUIUQbokH8OcNgH wqGENuzdAWrjeqkf+pB4YCX2BKzjG3SG03VtI8JMYG6/JqLQEPstI0SAGun/Firg9oZa kz8qo1uUlcaNFWpUBtkM3cg0/xgvasyZp2FixxmP2BZqmaNE53rhZRWcaemIpCZyfi95 byf3prIv4pcPkL86dt6r15MlGCe711CInj6hwULEb0qld6vPmdW2Chm8yHHp8z7JAtLb OUaFPdTtDm4edsv1y6AMh3ctp5vPUWg64dzKs4oKqFMOQXAKc/6suAy15+Q/HquK2dzO PA==
Received: from copdcexc33.cable.comcast.com (dlppfpt-po-1p.slb.comcast.com [96.99.226.137]) by mx0b-00143702.pphosted.com with ESMTP id 368fpdfefh-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT) for <dmarc@ietf.org>; Sun, 24 Jan 2021 19:25:18 -0500
Received: from copdcexc33.cable.comcast.com (147.191.125.132) by copdcexc33.cable.comcast.com (147.191.125.132) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1713.5; Sun, 24 Jan 2021 17:25:17 -0700
Received: from COPDCEXEDGE01.cable.comcast.com (96.114.158.213) by copdcexc33.cable.comcast.com (147.191.125.132) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1713.5 via Frontend Transport; Sun, 24 Jan 2021 17:25:17 -0700
Received: from NAM10-DM6-obe.outbound.protection.outlook.com (104.47.58.100) by webmail.comcast.com (96.114.158.213) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Sun, 24 Jan 2021 19:25:34 -0500
Received: from MN2PR11MB4351.namprd11.prod.outlook.com (2603:10b6:208:193::31) by MN2PR11MB4301.namprd11.prod.outlook.com (2603:10b6:208:188::30) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3784.13; Mon, 25 Jan 2021 00:25:13 +0000
Received: from MN2PR11MB4351.namprd11.prod.outlook.com ([fe80::7ca6:b482:a6b0:4d42]) by MN2PR11MB4351.namprd11.prod.outlook.com ([fe80::7ca6:b482:a6b0:4d42%7]) with mapi id 15.20.3784.017; Mon, 25 Jan 2021 00:25:13 +0000
From: "Brotman, Alex" <Alex_Brotman@comcast.com>
To: "dmarc@ietf.org" <dmarc@ietf.org>
Thread-Topic: Which DKIM(s) should be reported? (Ticket #38)
Thread-Index: AdbysIxA8zFO9cEQSfqEK/Gf/4kCJw==
Date: Mon, 25 Jan 2021 00:25:13 +0000
Message-ID: <MN2PR11MB4351BD7203D41DB25771D3B3F7BD9@MN2PR11MB4351.namprd11.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=comcast.com;
x-originating-ip: [2601:43:101:380:3dad:1098:6838:177c]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 2ec25933-f636-4fcb-5457-08d8c0c7aeec
x-ms-traffictypediagnostic: MN2PR11MB4301:
x-microsoft-antispam-prvs: <MN2PR11MB4301EB8AE0CC30C92B5BFA5DF7BD9@MN2PR11MB4301.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 0waspDlO4rIYJbWQrml+glaEwWnPNKvz1pEUlFJIPyaRuJG7bZ+P8fbeJxlCDxS8b4gKjqtaiLgO7zWCfoAqMXdZjmq3tjmJSaLnXeecur6t0Rd+6d2NpR+H2ea4MVQF+xcHsbBYUVrew8Tpvx2oG9CCyinruUnEFBAd7GSl5tHETxJUtok0JCuAeKlLRrgN2poOITDn2usQQiPI8hRFL7914H8ycx37Y7nEjxB+wH/F/j2q9kl6VjSMwGxPbghUOAkRftNoJgQn2fmqVL9L6dbvyqu0qyvA8N+4ofcqww0SvfmpFsnDL6yrqpHKfssB2/6OlV5gBR4ZsmOF9O4WyPia157hv8sOCLPTPq9Rkq8OTi4eGfH+hj6B4M93TqEMsruO26EvYvKHGqeiJvNljPxa0X5fOYa2rh42TFf6Xo2SuJ4dEt2j6jbtBMB6J2TZQfIiRZo4o1s9wIR+eF0N5Q==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:MN2PR11MB4351.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(39860400002)(366004)(376002)(346002)(136003)(396003)(316002)(6506007)(8676002)(6916009)(86362001)(83380400001)(186003)(52536014)(4744005)(478600001)(7696005)(5660300002)(966005)(66946007)(2906002)(66446008)(71200400001)(64756008)(8936002)(9686003)(33656002)(55016002)(66476007)(66556008)(76116006); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: =?us-ascii?Q?xivu8QdccCZBla6gHU96t8bqs/+9iDSugrhkUFT2YLZTsIjH3GWm/b5/5cOz?= =?us-ascii?Q?g/UfcqGc3JuejlNlP2Y833MaFis4lxEsEv1W1HxT5/QPUrIVoVIT653Wle1h?= =?us-ascii?Q?KHtOo5Zykm3QuHs5q3IGK+Y/XoIPYc1NhWbd6aDuQxOzW56enbIO/QD4ihzj?= =?us-ascii?Q?9hW3P8cuB3cU9Q6/O04YaCd2GFnnDvysJjjOIJxkg6X3WS/u/hHtAtd0PiB5?= =?us-ascii?Q?yH2+TOlnEH5fyBEQ9UfQ2SDWv3/JsqZrKNStwoyIPChNBtwD9psi+fVRT/F5?= =?us-ascii?Q?MYNDDQNrFdrus/yFGZb9ZlYRS/8F7MV0eYIA2bj0EUe23wA9pONf0EQqyk1v?= =?us-ascii?Q?HOaO6Pl3lZlrk8awxfG+ewDnctLW/fBmEGYxIzbaTZFeM07z0Jxw6ta0gbVS?= =?us-ascii?Q?hBxkJMJOkFV+K0CCbeMgQY14BOMzLMPcXoWYssaK4FjjkI4FPzXQVaxsPter?= =?us-ascii?Q?n3q44t6ZBWxjqbLeoytOCAp8rUiKkfJXFp9yaJUhl8H1wjCDtBL4dV66dkhs?= =?us-ascii?Q?heEHY8f+gV9UT7dqg/wTtIGO/HOqt+gL+eICHN+TlTgLx57id/Hd2u+94H2C?= =?us-ascii?Q?nJc5OhDN8sH8jpqxSXi2AO87w6YAgziRqrC1LY/ANNo4cSk1RMuQhWSicAL1?= =?us-ascii?Q?EKJw7k+onWdkF3izmSQOBMhghESU7PWA6JyQQfe+nk/3uY6z7W47keQD9Ypu?= =?us-ascii?Q?opOAIh64oCyKLtNePvKmXslEqU+W1NxA1YjMh25NPLsiD4pkI8HEZm98EF+y?= =?us-ascii?Q?P2sWA/yTWr4TNry0B1YkfxSCGVInQoQPYkmVnhQH33I5pRNXue3tODywQ5iM?= =?us-ascii?Q?ZF1l+dxVcnFss3dBEVnSI0f7iHNW4VAls2xP4nzPRgjyhLEi45sLgiJBvb+2?= =?us-ascii?Q?EZvoKEk5KD1iE5HU2bkIuTCFVxQC15MvI05Yx/1rdSp9+2mfptwx18EPDgCv?= =?us-ascii?Q?rkFhy0PQFLjEW93uiHKlaU8DRRAbblPd+Y167oB+n82kzoGfp92QHnVSgIOn?= =?us-ascii?Q?KOCJY7AUQI6/HJSR9EUyIpTY9witSEIrpzjqJwIw4qhnsCM=3D?=
x-ms-exchange-transport-forked: True
arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=SiIZutniNvj2nQ5fBEZeuEj4H/ZjHG3ZX11FIGYd6tW70l6+/TqEElLUTooormjvXPDCGDe/+0jyQuS5z2oBpBGtP4NA1Uk/JolWkQKGvPFxAGc3jryR1mSfnOAB3q5ckHUGl0Ujm8Q1+wy0pepYnO8xtuUkdX8+pxpQV92xazPhDYTH6S4fgZVUPQQZcwDFjK2VfM7OdD4uYzaZPubkUTbnCSgr9goVmCwn2GrW67Wc3ne+m2tRQBFgsaSEPrloeKTyMmkD/fugpNb37ub2R9+JGR26lKFeNYKTTQiGdiPhgKQkoe+UBggZTksnZvP/zUCK7XTLM9YpP6XO2j6Elw==
arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=6PqdAOQH2BYa3TYDwWVYGVQSivAhfaBpccfDYPXLRvY=; b=dKP/CUOJLGX6T4TUZCCP8wghGbphylkmVhL8+6FTAE0lgz7TdO0/zz0+cDYPdIC6fy0FdlxrlEFyiQ1wBwz5PjE+bn9/dzkfzvnnscM4p6AJZONpyhVXOxaNF8cYr+PjTwi//sJYlqFSTJxHKGwpszeqXyg8xZt6fJx9CbyH5zMH41imkg894GjxVwmoGGZwKP1fLvTyEL/lTBEaczkWbzu2fi20InVyfthyQNm2ii/NzXDFX5C5uoY4AS/yhzUG4z1DUF7TYFY5joA6PwvA7gHHcsYi3Nmjc8dd5cVHw6HMk6Nb2BXdJRTqSo+AqV+oo80vtoELR61Kp3deSVtTvg==
arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=comcast.com; dmarc=pass action=none header.from=comcast.com; dkim=pass header.d=comcast.com; arc=none
x-ms-exchange-crosstenant-authas: Internal
x-ms-exchange-crosstenant-authsource: MN2PR11MB4351.namprd11.prod.outlook.com
x-ms-exchange-crosstenant-network-message-id: 2ec25933-f636-4fcb-5457-08d8c0c7aeec
x-ms-exchange-crosstenant-originalarrivaltime: 25 Jan 2021 00:25:13.8204 (UTC)
x-ms-exchange-crosstenant-fromentityheader: Hosted
x-ms-exchange-crosstenant-id: 906aefe9-76a7-4f65-b82d-5ec20775d5aa
x-ms-exchange-crosstenant-mailboxtype: HOSTED
x-ms-exchange-crosstenant-userprincipalname: bRn6lZqpToLI9EYuLo5zPfaKVZi1juLrrXmA3K+adS6PLRaU/wz33zosuqSCOJNrVWRFs4QQq1wmsc3GJn85E/A5FYwEcqC/5GM3ky8zjuM=
x-ms-exchange-transport-crosstenantheadersstamped: MN2PR11MB4301
x-originatororg: comcast.com
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-CFilter-Loop: Forward AAETWC
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.343, 18.0.737 definitions=2021-01-24_13:2021-01-22, 2021-01-24 signatures=0
X-Proofpoint-Spam-Reason: safe
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/oN8jMt0kuLZVSu7yy2BCaFHoQuA>
Subject: [dmarc-ietf] Which DKIM(s) should be reported? (Ticket #38)
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 25 Jan 2021 00:25:21 -0000

Hello folks,

Some time ago, an issue[1] was brought to the list where which DKIM(s) being reported is not clear in RFC7489 [2].  There was a short discussion, though no clear resolution before conversation trailed off.  It seems like there were points that may need to be discussed.  One was whether the reporting SHOULD report all signatures, regardless of alignment or validity, or perhaps just the one that aligns (if there is one).  There was also another question if there should be a limit to the number of signatures reported so that it remains sane.

We'd like to try to get this resolved within about two weeks.  Thank you for your feedback.

1: https://mailarchive.ietf.org/arch/msg/dmarc/9-V596yl2BBaUzCNaDZB1Tg1s4c/
2: https://tools.ietf.org/html/rfc7489#section-7.2

--
Alex Brotman
Sr. Engineer, Anti-Abuse & Messaging Policy
Comcast