IETF Logo Mail Archive

[mailmaint] Re: Call for adoption: draft-gallagher-email-unobtrusive-signatures-01 (Ends 2025-11-21)

Bron Gondwana <brong@fastmailteam.com> Sat, 08 November 2025 02:25 UTC

Return-Path: <brong@fastmailteam.com>
X-Original-To: mailmaint@mail2.ietf.org
Delivered-To: mailmaint@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id D313885E14D5; Fri, 7 Nov 2025 18:25:48 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.798
X-Spam-Level:
X-Spam-Status: No, score=-2.798 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=fastmailteam.com header.b="WJ+VM0PC"; dkim=pass (2048-bit key) header.d=messagingengine.com header.b="1ysFO5nx"
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PDr68VDVpAvv; Fri, 7 Nov 2025 18:25:48 -0800 (PST)
Received: from fhigh-a3-smtp.messagingengine.com (fhigh-a3-smtp.messagingengine.com [103.168.172.154]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 36BDA85E14CE; Fri, 7 Nov 2025 18:25:48 -0800 (PST)
Received: from phl-compute-10.internal (phl-compute-10.internal [10.202.2.50]) by mailfhigh.phl.internal (Postfix) with ESMTP id AF3F014000C5; Fri, 7 Nov 2025 21:25:42 -0500 (EST)
Received: from phl-imap-15 ([10.202.2.104]) by phl-compute-10.internal (MEProxy); Fri, 07 Nov 2025 21:25:42 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= fastmailteam.com; h=cc:content-type:content-type:date:date:from :from:in-reply-to:in-reply-to:message-id:mime-version:references :reply-to:subject:subject:to:to; s=fm1; t=1762568742; x= 1762655142; bh=YlMmgPVE3mecXy4hFuhl/qETp45yXkKrA+oUfiH1sgc=; b=W J+VM0PC+aZD4h8ScjlIJBS5rXCwz52Q/95lz+qiiuQYlc29BBi3YgumyPKnUVZ/b eoSGmGrPkSJW8wO1ZJoWa6XxDU5Xq1/f4Maie6pQU5e9ZwkYG9zDC6IFoyHs4BJd VmFwqjJx81j44Dpb7+gp9OWvKPmep+EnA2tbov2pNQVec68INWWg7y0JP9lSkgoY cBvyvJOwWYriscw9ZQZ3HGB2sR+JvKy53zvrIn5qLQ+0L5TuSzUNIR2ROWY94kqL jFTOU4onVkFk4jInPtKZMGPQtdClU/+0Ir6Q7BtwxrI5yCegz37/N19PA95L8GhY N109CTgnedLFLUCkEUQEw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:content-type:date:date :feedback-id:feedback-id:from:from:in-reply-to:in-reply-to :message-id:mime-version:references:reply-to:subject:subject:to :to:x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm3; t= 1762568742; x=1762655142; bh=YlMmgPVE3mecXy4hFuhl/qETp45yXkKrA+o UfiH1sgc=; b=1ysFO5nxnfBjUGQ4jtCHxGUkcOFwW+oj2oZfLVmOUxneFcHb/cs cYMKtAB4NvGAsOGdGGfeVrh3WHD1ERHXCkphhFaJLR5nVcGu7j2hiERBos7M+UfW d5EVggb6BTOO2MIHpscikPxr7xIVLJBJvgEBJUI2SCnNc5xwPxxqGCwMWdz6vVJ/ J/eAzyE0pV7gi89rFTN5Px9t5kUYzTr2BHfRE9/DqF5ZLo9oWuEC42iHYX9AWN5R BHckS9IlpUXcsMIX3E2beszGZhDPNNNurfF/EAhDxbikOVzHQ6b2pKhCrTihhSCN PB9+NhTyuupfJ5Kp4AhoRArSnPN2R7FVgeg==
X-ME-Sender: <xms:JqoOaTR-xNV0fuapIngVLcJal1Gex4C9NLnsYnuf4fbTwZu2zfWK0A> <xme:JqoOaflHi9mCBJuyNjwgqRGT3YFOqMsaqKVnGOOmzPLW6BMxOlXH0gEFo5e_4QqHn vk3wxKAoExaUKaTu_-AVY-uhvJ6kkgLEQca68eVyk9a2A>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeeffedrtdeggdduledufeefucetufdoteggodetrf dotffvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfurfetoffkrfgpnffqhgenuceu rghilhhouhhtmecufedttdenucenucfjughrpefoggffhffvkfgjfhfutgesrgdtreerre dttdenucfhrhhomhepfdeurhhonhcuifhonhgufigrnhgrfdcuoegsrhhonhhgsehfrghs thhmrghilhhtvggrmhdrtghomheqnecuggftrfgrthhtvghrnhepfedtgedvgedttedvfe fhffejgedvvdekvddttdevgedvheffvddukeegheevteevnecuffhomhgrihhnpehivght fhdrohhrghenucevlhhushhtvghrufhiiigvpedtnecurfgrrhgrmhepmhgrihhlfhhroh hmpegsrhhonhhgsehfrghsthhmrghilhhtvggrmhdrtghomhdpnhgspghrtghpthhtohep gedpmhhouggvpehsmhhtphhouhhtpdhrtghpthhtohepshhuphgvrhhushgvrhesghhmrg hilhdrtghomhdprhgtphhtthhopegurhgrfhhtqdhgrghllhgrghhhvghrqdgvmhgrihhl qdhunhhosghtrhhushhivhgvqdhsihhgnhgrthhurhgvshesihgvthhfrdhorhhgpdhrtg hpthhtohepmhgrihhlmhgrihhnthdqtghhrghirhhssehivghtfhdrohhrghdprhgtphht thhopehmrghilhhmrghinhhtsehivghtfhdrohhrgh
X-ME-Proxy: <xmx:JqoOac3-RYPI_2zGMT_Ztu4tcNLxh_QCbNB8tDOJeGiHfohxt_eMQA> <xmx:JqoOaeFr5NXi1UgAVuCvozsZL6vCyFfqz640ljS6mw7cN9rARRVDjA> <xmx:JqoOaZ4ihEo3wz7Fqc_zvmCgqqEVxMk_dFKi-TaSAD3V9Z4nU4o3iQ> <xmx:JqoOaUu_JDh3l0QjJ4B_HY8zlcz6L7UzMmO5LWyqt-wrYLe5Hl36sw> <xmx:JqoOaSOcChBtaDH_kfgCyAAGgv7jDoYI6DH2Oh2sAQcKXp7r8OsZ5tkJ>
Feedback-ID: i2d7042ce:Fastmail
Received: by mailuser.phl.internal (Postfix, from userid 501) id 5A96878012B; Fri, 7 Nov 2025 21:25:42 -0500 (EST)
X-Mailer: MessagingEngine.com Webmail Interface
MIME-Version: 1.0
X-ThreadId: Az2b47UB-fTB
Date: Fri, 07 Nov 2025 21:25:22 -0500
From: Bron Gondwana <brong@fastmailteam.com>
To: "Murray S. Kucherawy" <superuser@gmail.com>, draft-gallagher-email-unobtrusive-signatures@ietf.org, mailmaint-chairs@ietf.org, mailmaint@ietf.org
Message-Id: <5970be63-fd11-49c8-85b1-e403ecfeaaed@app.fastmail.com>
In-Reply-To: <176253364238.1476453.3714553592332495285@dt-datatracker-5df8666cb-7l4w5>
References: <176253364238.1476453.3714553592332495285@dt-datatracker-5df8666cb-7l4w5>
Content-Type: multipart/alternative; boundary="81c928fcff2d431e810418bb360e38bb"
Message-ID-Hash: YGYBGPGJFBJQJTRMB46AIG5KVFJTXKDD
X-Message-ID-Hash: YGYBGPGJFBJQJTRMB46AIG5KVFJTXKDD
X-MailFrom: brong@fastmailteam.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [mailmaint] Re: Call for adoption: draft-gallagher-email-unobtrusive-signatures-01 (Ends 2025-11-21)
List-Id: Mail Maintenance <mailmaint.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/mailmaint/XOywAYW5R8hOLysM_wFYmoXJi1Y>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mailmaint>
List-Help: <mailto:mailmaint-request@ietf.org?subject=help>
List-Owner: <mailto:mailmaint-owner@ietf.org>
List-Post: <mailto:mailmaint@ietf.org>
List-Subscribe: <mailto:mailmaint-join@ietf.org>
List-Unsubscribe: <mailto:mailmaint-leave@ietf.org>

I support adoption.  Per the discussion in the IETF124 meeting, I propose that the signature cover the data normalised per the `relaxed` algorithm in DKIM, which is slightly different than what I said in the meeting:

*3.4.4 <https://datatracker.ietf.org/doc/html/rfc6376#section-3.4.4>.  The "relaxed" Body Canonicalization Algorithm*

   The "relaxed" body canonicalization algorithm MUST apply the
   following steps (a) and (b) in order:

   a.  Reduce whitespace:

       *  Ignore all whitespace at the end of lines.  Implementations
          MUST NOT remove the CRLF at the end of the line.

       *  Reduce all sequences of WSP within a line to a single SP
          character.

   b.  Ignore all empty lines at the end of the message body.  "Empty
       line" is defined in Section 3.4.3 <https://datatracker.ietf.org/doc/html/rfc6376#section-3.4.3>.  If the body is non-empty but
       does not end with a CRLF, a CRLF is added.  (For email, this is
       only possible when using extensions to SMTP or non-SMTP transport
       mechanisms.

This allows the DKIM (and what's now called Mail-Version but I will propose to rename to Message-Instance) signatures to continue to allow re-calculating something which passes this signature.  I think it's a worthwhile set of normalisations which allow messages to handle the kind of nonsense which existing email systems apply, while still meaning the same thing to all receivers, and still passing all the relevant signatures.

Bron.

On Fri, Nov 7, 2025, at 11:40, Murray Kucherawy via Datatracker wrote:
> 
> Subject: Call for adoption: draft-gallagher-email-unobtrusive-signatures-01 
> (Ends 2025-11-21)
> 
> This message starts a 2-week Call for Adoption for this document.
> 
> Abstract:
>    This document deals with end-to-end cryptographically signed email.
>    It introduces a novel structure for signed email that is designed to
>    avoid creating any disturbance in legacy email clients.  This
>    "unobtrusive" signature structure removes disincentives for signing
>    email.
> 
> File can be retrieved from:
> https://datatracker.ietf.org/doc/draft-gallagher-email-unobtrusive-signatures/
> 
> Please reply to this message keeping mailmaint@ietf.org in copy by indicating
> whether you support or not the adoption of this draft as a WG document.
> Comments to motivate your preference are highly appreciated.
> 
> Authors, and WG participants in general, are reminded of the Intellectual
> Property Rights (IPR) disclosure obligations described in BCP 79 [2].
> Appropriate IPR disclosures required for full conformance with the provisions
> of BCP 78 [1] and BCP 79 [2] must be filed, if you are aware of any.
> Sanctions available for application to violators of IETF IPR Policy can be
> found at [3].
> 
> Thank you.
> [1] https://datatracker.ietf.org/doc/bcp78/
> [2] https://datatracker.ietf.org/doc/bcp79/
> [3] https://datatracker.ietf.org/doc/rfc6701/
> 
> 
> 
> -- 
> mailmaint mailing list -- mailmaint@ietf.org
> To unsubscribe send an email to mailmaint-leave@ietf.org
> 

--
  Bron Gondwana, CEO, Fastmail Pty Ltd / Fastmail US LLC
  brong@fastmailteam.com

v2.46.0 | Report a Bug | By Email | System Status