One thought:
The https section should specify a recomendation of what the web site
should return when it sees a POST, and what if anything the generator
should do if the web site replies that the report is not to spec. Ie,
bad syntax or bad contents or the like.
It probably should be json and
A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Using TLS in Applications WG of the IETF.
Title : SMTP TLS Reporting
Authors : Daniel Margolis
Alexander Brotman