Technical Summary
This memo presents extensions to the Abuse Reporting Format (ARF),
and Sender Policy Framework (SPF) specifications to allow for
detailed reporting of message authentication failures in an on-demand
fashion. This memo updates RFC4408.
Working Group Summary
There was little controversy of note. The extensions presented here
are useful to sites deploying SPF and seeking visibility into
situations where mail covered by SPF is rejected or otherwise
affected by local policy. Demand for this capability is increasing,
especially from domains that are popular scam targets.
Document Quality
There are only a couple of known existing implementations, one made
by a working group participant as the specification solidified to
prove that it's viable. There are, however, several vendors that
intend to implement this specificaiton and its adjuncts
(draft-ietf-marf-redaction and draft-ietf-marf-dkim-reporting), along
with other non-MARF specifications that provide this kind of feedback
to respond to customer demand, upon publication.
Personnel
Murray Kucherawy <msk@cloudmark.com> is the Document Shepherd.
Pete Resnick <presnick@qualcomm.com> is the responsible area director.
RFC Editor Note
Please make the following change to the document:
OLD
spf-rr-tag = "rr=" spf-rr-type 0* ( ":" spf-rr-type )
NEW
spf-rr-tag = "rr=" spf-rr-type *( ":" spf-rr-type )