Unburying this from a different thread. I'm really struggling to understand what problem(s) DMARC is trying to solve. The most common answer I have heard says something about "defending brand identity", which is a marketing, not a technical consideration.
IMO we need a threat analysis, ala RFC 4686 or RFC 5016, to define the technical requirements. I am NOT volunteering to do this. -Jim _______________________________________________ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc