While I like the terseness of Dave's text, its limiting the focus on DKIM may
mislead. It is natural to blame DKIM, but someone suggested that DKIM is
working as intended even in replay attacks. Indeed, differentiating a mailing
list from a replay attack on the basis of signatures is difficult
Alternative draft charter text:
Domain Keys Identified Mail (DKIM, RFC 6376) associates a validated identifier with a
message. This aids receiver assessment of the message flow using that identifier,
improving reputation development and abuse detection. A DKIM-signed message can be
re-post