This sounds like something that we should definitely add so that there is clarity, but it does add a situation where cv=unknown might happen if the previous step only signed with an algorithm that was not understood.
Right -- you can't tell a signature with an unknown algorithm with one that's just fake.
Regards, John Levine, jo...@taugh.com, Taughannock Networks, Trumansburg NY Please consider the environment before reading this e-mail. https://jl.ly _______________________________________________ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc