Re: [dmarc-ietf] Email security beyond DMARC?

'Bernie Hoeneisen' <bernie@ietf.hoeneisen.ch> Tue, 19 March 2019 18:44 UTC

Return-Path: <bernie@ietf.hoeneisen.ch>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 15E911315A3 for <dmarc@ietfa.amsl.com>; Tue, 19 Mar 2019 11:44:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BIVJNyaCHY6p for <dmarc@ietfa.amsl.com>; Tue, 19 Mar 2019 11:44:01 -0700 (PDT)
Received: from softronics.hoeneisen.ch (softronics.hoeneisen.ch [62.2.86.178]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 79BC713151C for <dmarc@ietf.org>; Tue, 19 Mar 2019 11:44:01 -0700 (PDT)
Received: from localhost ([127.0.0.1]) by softronics.hoeneisen.ch with esmtp (Exim 4.86_2) (envelope-from <bernie@ietf.hoeneisen.ch>) id 1h6JiP-0001do-9O; Tue, 19 Mar 2019 19:43:57 +0100
Date: Tue, 19 Mar 2019 19:43:57 +0100 (CET)
From: 'Bernie Hoeneisen' <bernie@ietf.hoeneisen.ch>
X-X-Sender: bhoeneis@softronics.hoeneisen.ch
To: Doug Foster <fosterd@bayviewphysicians.com>
cc: 'DAMY gustavo' <gustavo.DAMY@upu.int>, dmarc@ietf.org
In-Reply-To: <002a01d4de81$18ac27b0$4a047710$@bayviewphysicians.com>
Message-ID: <alpine.DEB.2.20.1903191935400.4731@softronics.hoeneisen.ch>
References: <1dc451a973a8443a87d37b6e5c41fe38@bayviewphysicians.com> <alpine.DEB.2.20.1903181355520.5419@softronics.hoeneisen.ch> <90b936ec488f41108bc4e528eb7933f6@PEXC01.upu.ch> <002a01d4de81$18ac27b0$4a047710$@bayviewphysicians.com>
User-Agent: Alpine 2.20 (DEB 67 2015-01-07)
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII; format=flowed
X-SA-Exim-Connect-IP: 127.0.0.1
X-SA-Exim-Mail-From: bernie@ietf.hoeneisen.ch
X-SA-Exim-Scanned: No (on softronics.hoeneisen.ch); SAEximRunCond expanded to false
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/owooSjsoNr6MAGw2HuATa9USNLg>
Subject: Re: [dmarc-ietf] Email security beyond DMARC?
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 19 Mar 2019 18:44:13 -0000

Dear Doug / Damy

There is no direct connection between pEp and DMARC, as pEp is not relying 
on centralized infrastructure.


cheers
  Bernie

On Tue, 19 Mar 2019, Doug Foster wrote:

> Can one of you elaborate on the potential connection between PeP and DMARC,
> or more generally, the connection beteen PeP and spam filtering?
>
> -----Original Message-----
> From: dmarc [mailto:dmarc-bounces@ietf.org] On Behalf Of DAMY gustavo
> Sent: Tuesday, March 19, 2019 2:03 PM
> To: dmarc@ietf.org
> Cc: Bernie Hoeneisen
> Subject: Re: [dmarc-ietf] Email security beyond DMARC?
>
> Very useful links Bernie, thanks for the info.
> I wonder if this working group will eventually will make reference  to the
> concept of PeP  protocol to reinforce the usage of DMARC  you are mentioning
> below?
>
> Best Regards
> Gustavo Damy
>
>
> -----Original Message-----
> From: Bernie Hoeneisen <bernie@ietf.hoeneisen.ch>
> Sent: Monday, March 18, 2019 1:58 PM
> To: Douglas E. Foster <fosterd@bayviewphysicians.com>
> Cc: dmarc@ietf.org
> Subject: Re: [dmarc-ietf] Email security beyond DMARC?
>
> Hi Doug
>
> On Sat, 16 Mar 2019, Douglas E. Foster wrote:
>
>> I tried to understand what IETF is doing about email security, and
>> this working group seems to be the only surviving effort.  Based on
>> the index, the groups attention is focused on polishing the existing
>> DMARC implementaton rather than plowing new territory.  Given the
>> devastating effect of WannaCry and the success of other email-based
>> attacks, I think our work is far from finished.
>
> You may want to have a look on some upcoming work. We just started a new
> mailing list, which includes the topic of email security:
>
>  MEDUP -- Missing Elements for Decentralized and Usable Privacy
>
> To subscribe:
>
> - https://www.ietf.org/mailman/listinfo/medup
>
> Please find more information on:
>
> - https://mailarchive.ietf.org/arch/msg/medup/mbrbhFekt_srXShzpCa4RiXgPbY
>
> - https://mailarchive.ietf.org/arch/msg/pearg/oBjgAwG3_eoR6tpLQGTE_9OggzQ
>
> The former also includes a list of Internet-Drafts describing the MEDUP
> challenges.
>
>
> Please be also informated that the LAMPS WG has requested a new work item on
> email header protection to be added to its charter.
>
>
> Hope that helps!
>
> Best,
>  Bernie
>
> --
>
> http://ucom.ch/
> Modern Telephony Solutions and Tech Consulting for Internet Technology
>
>
> _______________________________________________
> dmarc mailing list
> dmarc@ietf.org
> https://www.ietf.org/mailman/listinfo/dmarc
>
>
> _______________________________________________
> dmarc mailing list
> dmarc@ietf.org
> https://www.ietf.org/mailman/listinfo/dmarc
>