On 17-11-15 21:38, J. Gomez via dmarc-discuss wrote:
Hello all.
Google -among other authors- has published a paper titled "Neither Snow Nor Rain Nor
MITM... An Empirical Analysis of Email Delivery Security" about email security
(mainly about TLS in SMTP), and DMARC is talked about in it.
So I thought it would be of interest to the list members.
Link: http://conferences2.sigcomm.org/imc/2015/papers/p27.pdf
Nice article, thanks for sharing this link. Although I didn't have the
time to read it thoroughly, a quick glance seems to confirm the wide gap
there is between a small number of big e-mail service providers on one
hand and the vast majority (in numbers) of providers and organizations
which do not deploy DMARC yet, on the other hand. A possible explanation
can be that the majority of these providers and organizations are too
small to afford one or more full time staff for their mail
administration. So a draft like John's draft-levine-dkim-conditional may
fit the big ESP scene, but the vast majority of sending domains won't
have a clue on when to add the !fs signature and when not, as they
simply have no information about their users on who's on which list.
The same may be true for ARC for small receivers in the non-ESP group:
they may have no idea how to adjust the published DMARC policy based
upon the information ARC provides. I'm afraid there's no easy solution here.
/rolf
_______________________________________________
dmarc-discuss mailing list
[email protected]
http://www.dmarc.org/mailman/listinfo/dmarc-discuss
NOTE: Participating in this list means you agree to the DMARC Note Well terms
(http://www.dmarc.org/note_well.html)
