ARC (was - Re: DMARC and ietf.org)
Dave Crocker <dhc@dcrocker.net> Sat, 13 August 2016 15:23 UTC
Return-Path: <dhc@dcrocker.net>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 47AF612D5E8 for <ietf@ietfa.amsl.com>; Sat, 13 Aug 2016 08:23:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.999
X-Spam-Level:
X-Spam-Status: No, score=-0.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, RDNS_NONE=0.793, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, T_DKIM_INVALID=0.01] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=fail (1024-bit key) reason="fail (message has been altered)" header.d=dcrocker.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SBpzVd2xZlPA for <ietf@ietfa.amsl.com>; Sat, 13 Aug 2016 08:23:24 -0700 (PDT)
Received: from simon.songbird.com (unknown [72.52.113.5]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A20BA12D1E4 for <ietf@ietf.org>; Sat, 13 Aug 2016 08:23:24 -0700 (PDT)
Received: from [192.168.1.168] (76-218-8-128.lightspeed.sntcca.sbcglobal.net [76.218.8.128]) (authenticated bits=0) by simon.songbird.com (8.14.4/8.14.4/Debian-4.1ubuntu1) with ESMTP id u7DFNTe8007873 (version=TLSv1/SSLv3 cipher=DHE-RSA-CAMELLIA256-SHA bits=256 verify=NOT); Sat, 13 Aug 2016 08:23:29 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=dcrocker.net; s=default; t=1471101809; bh=181qEPGlbHS93yWnPACYpZ6HXGMhPCJt6Q6xq8Uz9Ek=; h=Subject:To:References:Cc:From:Reply-To:Date:In-Reply-To:From; b=BzWjGnc4cA4bxLIiRgYb9nkHu33Q6zzbp34KqDndSijGHTMacYt/+1xCBjzBUvvzz xNnoIHQDqXcznmRQD8TrWO9sIwfP4FX9bmFoP/DZA9QmCS3rGD54inhekMhCG/go+E aKUtP9I4Upief+y2RDJPdRdje88Xwktpt3l5xqf4=
Subject: ARC (was - Re: DMARC and ietf.org)
To: John R Levine <johnl@taugh.com>, Theodore Ts'o <tytso@mit.edu>
References: <c87f5578-be42-5a4e-d979-f4166e2f2ef2@gmail.com> <20160813023957.5679.qmail@ary.lan> <CAPt1N1mO0xxfc3SghV1pcNUjOz9yKk-g=bgU+dWrgy2LWcwhBg@mail.gmail.com> <20160813150004.GM10626@thunk.org> <alpine.OSX.2.11.1608131101040.12562@ary.local>
From: Dave Crocker <dhc@dcrocker.net>
Organization: Brandenburg InternetWorking
Message-ID: <2561d946-b853-4dd2-5aba-921bd88f99ba@dcrocker.net>
Date: Sat, 13 Aug 2016 08:22:52 -0700
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.2.0
MIME-Version: 1.0
In-Reply-To: <alpine.OSX.2.11.1608131101040.12562@ary.local>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/0sFUeCumvE8ij6Y92H9CvLKSTJY>
Cc: ietf <ietf@ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
Reply-To: dcrocker@bbiw.net
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 13 Aug 2016 15:23:25 -0000
On 8/13/2016 8:10 AM, John R Levine wrote: > More to the point, ARC lets lists keep working they way they're supposed > to. I participate in the informal group that created ARC. I am hoping ARC will be helpful. But we need to be cautious with our expectations. First, it isn't operational yet, so we don't even know whether it will do what we want it to. Worse, we don't know how much that will help. That's not a claim that it won't work or won't be useful, but it is playing amidst some Internet-scale, multi-stage dynamics that can get complicated. By way of example: With DKIM, trust assessment is of the entity doing the signing, typically the originating service. With ARC, that assessment still must be made, but it must be coupled with an assessment of the first ARC-signing entity. Maybe that's not a big deal. But I think that combinatorial trust assessments are new and therefore might be challenging. And that's not counting the question of whether an ARC signature will survive better than a DKIM signature... (The design is intended to have better survival, but again, it hasn't been tested in the field.) In terms of the current discussion, the essential point is that we need to make decision based on the here and now, and ARC isn't part of it and won't be for some time yet. d/ -- Dave Crocker Brandenburg InternetWorking bbiw.net
- Re: DMARC and ietf.org =JeffH
- Re: Do we actually want to do anything about DMAR… John Levine
- Re: DMARC and ietf.org John Levine
- Re: Do we actually want to do anything about DMAR… Brian E Carpenter
- Re: DMARC and ietf.org S Moonesamy
- Re: Do we actually want to do anything about DMAR… ned+ietf
- Re: Do we actually want to do anything about DMAR… John R Levine
- Re: Do we actually want to do anything about DMAR… Michael Richardson
- Re: Do we actually want to do anything about DMAR… Theodore Ts'o
- Re: DMARC and ietf.org Rich Kulawiec
- Re: Do we actually want to do anything about DMAR… Alessandro Vesely
- Do we actually want to do anything about DMARC? John Levine
- Re: DMARC and ietf.org Michael Richardson
- Re: DMARC and ietf.org S Moonesamy
- Re: DMARC and ietf.org Viktor Dukhovni
- Re: list managers, was DMARC and ietf.org John R Levine
- Re: DMARC and ietf.org Theodore Ts'o
- ARC (was - Re: DMARC and ietf.org) Dave Crocker
- Re: DMARC and ietf.org Theodore Ts'o
- Re: DMARC and ietf.org John R Levine
- Re: DMARC and ietf.org Ted Lemon
- Re: DMARC and ietf.org Brian E Carpenter
- Re: DMARC and ietf.org John Levine
- Re: DMARC and ietf.org John Levine
- Re: DMARC and ietf.org Andrew G. Malis
- Re: DMARC and ietf.org =JeffH
- Re: DMARC and ietf.org John Payne
- Re: DMARC and ietf.org John Levine
- Re: DMARC and ietf.org John Payne
- Re: DMARC and ietf.org Miles Fidelman