On Wed, Apr 5, 2023 at 2:57 PM Scott Kitterman <[email protected]> wrote:
> My understanding is that the IETF doesn't do implementation > specifications. I'm not sure what problem that's related to > interoperability this is meant to address. > > I think the ticket should be closed without action The purpose of DMARC from the point of view of a domain owner, is to stop spoofing of their exact domain from unauthorized sources. The document describes certain mechanics of this relative to the Author Domain, but never explains what doing this completely for the Organizational Domain and its entire hierarchy looks like. As this is the goal of many domain owners, it is worth clear definition in the document. When we talk about DMARC and interoperability, we have to remember that there are THREE participants within DMARC that need to interoperate, the sender, the receiver, and the domain owner. We keep on discussing the sender and receiver relationship, and leaving the domain owner out to dry. It's the domain owner's authentication, and their policy, which DMARC is all about. DMARC is nothing without domain owners. This is clunky, because there's normally not a person or business in the mix when we talk about interop. With DMARC, there is. Policy needs to work as expected, and consistently. Therefore, we need clear definition. I can see how this might look like implementation guidance if you're only thinking about the bits moving between the sender and the receiver. In the DMARC context, the domain owner's desires, and clarity on how to implement them, are critical to be spelled out in the document. The text that I proposed feels like the minimum text needed to address this clarity, without telling people what to do. Seth, hatless -- *Seth Blank * | Chief Technology Officer *e:* [email protected] *p:* 415.273.8818 This email and all data transmitted with it contains confidential and/or proprietary information intended solely for the use of individual(s) authorized to receive it. If you are not an intended and authorized recipient you are hereby notified of any use, disclosure, copying or distribution of the information included in this transmission is prohibited and may be unlawful. Please immediately notify the sender by replying to this email and then delete it from your system.
_______________________________________________ dmarc mailing list [email protected] https://www.ietf.org/mailman/listinfo/dmarc
