It appears that Taavi Eomäe via mailop <ta...@zone.ee> said: >> Every a few months we see a paper / blogpost that passes SPF / DKIM / >> DMARC. So maybe requiring both SPF and DKIM for BIMI would be a good idea. > >Both together might make sending a bit too error-prone. Hardening DKIM >seems more doable. I hope that IETF's mailmaint gets to discuss topics >like these and maybe we'll see some standardized approaches.
If you want to propose something for mailmaint, write up a draft and send it in. There is no chance that anyone's interested in changing DKIM, but I could see an applicability statement or BCP that offered advice on what to sign and what options (not) to use. R's, John _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop