On 11/22/20 11:14 AM, John R Levine wrote:
Is there a reason that there is a separate ARC-signature rather than
just using the DKIM signature that is normally created for the new
message? Since ARC is new, you'd not want the intermediary to stop
DKIM signing the message so you end up with essentially two
signatures doing essentially the same thing?
The ARC signature has a sequence number so you can track the chain of
custody. You are right that it is similar to the DKIM signature but
the extra ovehead doesn't seem excessive.
Did the wg consider just grafting that onto the DKIM signature itself
instead of having essentially a duplicate signature? Receivers are
already supposed to ignore any tags they don't understand so it
shouldn't hurt backward compatibility.
Mike
_______________________________________________
dmarc mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dmarc
