On Thu, Jun 8, 2023 at 6:00 AM Tobias Herkula <tobias.herkula= 401und1...@dmarc.ietf.org> wrote:
> My team recently concluded an extensive study on the current use and > performance of DMARC. We analyzed a staggering 3.2 billion emails, and the > insights drawn are quite enlightening. Of these, 2.2 billion emails > (approximately 69%) passed the DMARC check successfully. It's quite an > achievement, reflective of our collective hard work in fostering a safer, > more secure email environment. > > > > However, upon further analysis, it's evident that a mere 1.6% (or > thirty-six million) of these DMARC-passed emails relied exclusively on the > Sender Policy Framework (SPF) for validation. This is a remarkably low > volume compared to the overall DMARC-passed traffic, raising questions > about SPF's relevancy and the load it imposes on the DNS systems. > > > > Given the current use case scenarios and the desire to optimize our > resources, I propose that we explore the possibility of removing the SPF > dependency from DMARC. This step could result in a significant reduction in > DNS load, increased efficiency, and an accurate alignment with our > predominant use cases. > > [...] > Does anyone have consonant (or dissonant) data? -MSK, participating
_______________________________________________ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc
