Re: [dmarc-ietf] Experiments
On Thursday, September 23, 2021 3:03:39 AM EDT Murray S. Kucherawy wrote: > On Wed, Sep 22, 2021 at 1:59 PM Scott Kitterman > > wrote: > > I can comment on the status of PSD. > > Please do! There is progress, but it is still early to expect much in the way of information. Keep in mind that RFC 9091 is less than two months old. As most of you will probably recall from the discussion around PSD DMARC, the ICANN managed TLDs (essentially everything except ccTLDs and a few special cases like .mil and .gov) require permission to publish via non-IETF processes. I'm aware of three PSDs which currently publish records. Both .gov.uk and .mil have had records published for some time. Additionally, .police.uk published a record in July of this year. I understand that .gov plans to publish their record this month. Until we see publication from an ICANN managed TLD, I don't think we'll have enough variety to seriously begin the assessments contemplated in the experiment section of RFC 9091, so it's difficult to predict how soon we will have conclusions. This isn't the right place to go into details on non-IETF processes. Based on what I've heard so far, the PSD records are being queried and there is some feedback reporting, so I'm confident we'll get data once we get a little further on deployment. If anyone is aware of others, please let me know. Scott K ___ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc
Re: [dmarc-ietf] Experiments
For messages sent from Office365, Microsoft applies an initial ARC set, and declares the message to be DMARC-compliant.I do not think Microsoft should be passing judgement on messages that it is originating, or attributing an SPF result to a message that was only just submitted with SMTP AUTH. But this situation does point to the complexity of trusting and interpreting the ARC chain, which is unfortunate. On Thu, Sep 23, 2021 at 5:08 PM Brotman, Alex wrote: > Murray, > > > > We’ve started (relatively recently, in volume) logging ARC data so we can > try to make some informed decisions going forward. We’re not yet acting on > anything as a result, nor writing into the message. We’re also not doing > anything when mail is being forwarded. We’ll hopefully have more > information/data available to share in the future (may not be the very near > future given other projects going on). This isn’t a guarantee that we’ll > fully adopt ARC in the future, but enough to say we’re logging/analyzing > things. > > Random thing while looking at some data just now .. At least one message > apparently came through with seven ARC sets. > > > > Let me know if there’s anything I can answer at this point. > > > > -- > > Alex Brotman > > Sr. Engineer, Anti-Abuse & Messaging Policy > > Comcast > > > > *From:* dmarc *On Behalf Of * Murray S. Kucherawy > *Sent:* Wednesday, September 22, 2021 4:30 PM > *To:* IETF DMARC WG > *Subject:* [dmarc-ietf] Experiments > > > > Is anyone in a position to comment on the ARC and PSD experiments and how > they're progressing? Deployment status? Data acquired thus far? > > > > -MSK > > > ___ > dmarc mailing list > dmarc@ietf.org > https://www.ietf.org/mailman/listinfo/dmarc > ___ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc
Re: [dmarc-ietf] Experiments
Piling onto Alex's response... we have some ARC functionality deployed and servicing customers. I'm currently looking into what useful data we can extract and share what we've learned from the implementation (which may lead to some useful topics to discuss in more depth). In a related note... an early examination seems to underscore the need to more guidance about how to interpret ARC sets. As Alex pointed out... there are some messages with way more sets than can be used to make a reasonable determination about the provenance of the message. So, at the very least, I think we may need to develop some ancillary documents to support broader adoption. More as it develops, Trent From: dmarc on behalf of "Brotman, Alex" Date: Thursday, September 23, 2021 at 3:08 PM To: "Murray S. Kucherawy" , IETF DMARC WG Subject: Re: [dmarc-ietf] Experiments Murray, We’ve started (relatively recently, in volume) logging ARC data so we can try to make some informed decisions going forward. We’re not yet acting on anything as a result, nor writing into the message. We’re also not doing anything when mail is being forwarded. We’ll hopefully have more information/data available to share in the future (may not be the very near future given other projects going on). This isn’t a guarantee that we’ll fully adopt ARC in the future, but enough to say we’re logging/analyzing things. Random thing while looking at some data just now .. At least one message apparently came through with seven ARC sets. Let me know if there’s anything I can answer at this point. -- Alex Brotman Sr. Engineer, Anti-Abuse & Messaging Policy Comcast From: dmarc On Behalf Of Murray S. Kucherawy Sent: Wednesday, September 22, 2021 4:30 PM To: IETF DMARC WG Subject: [dmarc-ietf] Experiments Is anyone in a position to comment on the ARC and PSD experiments and how they're progressing? Deployment status? Data acquired thus far? -MSK ___ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc
Re: [dmarc-ietf] Experiments
Murray, We’ve started (relatively recently, in volume) logging ARC data so we can try to make some informed decisions going forward. We’re not yet acting on anything as a result, nor writing into the message. We’re also not doing anything when mail is being forwarded. We’ll hopefully have more information/data available to share in the future (may not be the very near future given other projects going on). This isn’t a guarantee that we’ll fully adopt ARC in the future, but enough to say we’re logging/analyzing things. Random thing while looking at some data just now .. At least one message apparently came through with seven ARC sets. Let me know if there’s anything I can answer at this point. -- Alex Brotman Sr. Engineer, Anti-Abuse & Messaging Policy Comcast From: dmarc On Behalf Of Murray S. Kucherawy Sent: Wednesday, September 22, 2021 4:30 PM To: IETF DMARC WG Subject: [dmarc-ietf] Experiments Is anyone in a position to comment on the ARC and PSD experiments and how they're progressing? Deployment status? Data acquired thus far? -MSK ___ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc
Re: [dmarc-ietf] Experiments
On Wed, Sep 22, 2021 at 1:59 PM Scott Kitterman wrote: > I can comment on the status of PSD. > Please do! ___ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc
