forked from ietf-wg-dmarc/draft-ietf-dmarc-psd
-
Notifications
You must be signed in to change notification settings - Fork 0
/
draft-ietf-dmarc-psd-08-from-7.diff.html
250 lines (249 loc) · 46.7 KB
/
draft-ietf-dmarc-psd-08-from-7.diff.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<!-- Generated by rfcdiff 1.41: rfcdiff -->
<!-- <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional" > -->
<!-- System: Linux l5580 4.19.0-8-amd64 #1 SMP Debian 4.19.98-1 (2020-01-26) x86_64 GNU/Linux -->
<!-- Using awk: /usr/bin/gawk: GNU Awk 4.2.1, API: 2.0 (GNU MPFR 4.0.2, GNU MP 6.1.2) -->
<!-- Using diff: /usr/bin/diff: diff (GNU diffutils) 3.7 -->
<!-- Using wdiff: /usr/bin/wdiff: wdiff (GNU wdiff) 1.2.2 -->
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
<meta http-equiv="Content-Style-Type" content="text/css" />
<title>Diff: draft-ietf-dmarc-psd-07.txt - draft-ietf-dmarc-psd-08.txt</title>
<style type="text/css">
body { margin: 0.4ex; margin-right: auto; }
tr { }
td { white-space: pre; font-family: monospace; vertical-align: top; font-size: 0.86em;}
th { font-size: 0.86em; }
.small { font-size: 0.6em; font-style: italic; font-family: Verdana, Helvetica, sans-serif; }
.left { background-color: #EEE; }
.right { background-color: #FFF; }
.diff { background-color: #CCF; }
.lblock { background-color: #BFB; }
.rblock { background-color: #FF8; }
.insert { background-color: #8FF; }
.delete { background-color: #ACF; }
.void { background-color: #FFB; }
.cont { background-color: #EEE; }
.linebr { background-color: #AAA; }
.lineno { color: red; background-color: #FFF; font-size: 0.7em; text-align: right; padding: 0 2px; }
.elipsis{ background-color: #AAA; }
.left .cont { background-color: #DDD; }
.right .cont { background-color: #EEE; }
.lblock .cont { background-color: #9D9; }
.rblock .cont { background-color: #DD6; }
.insert .cont { background-color: #0DD; }
.delete .cont { background-color: #8AD; }
.stats, .stats td, .stats th { background-color: #EEE; padding: 2px 0; }
</style>
</head>
<body >
<table border="0" cellpadding="0" cellspacing="0">
<tr bgcolor="orange"><th></th><th> draft-ietf-dmarc-psd-07.txt </th><th> </th><th> draft-ietf-dmarc-psd-08.txt </th><th></th></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left">Network Working Group S. Kitterman</td><td> </td><td class="right">Network Working Group S. Kitterman</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left">Internet-Draft fTLD Registry Services</td><td> </td><td class="right">Internet-Draft fTLD Registry Services</td><td class="lineno" valign="top"></td></tr>
<tr><td><a name="diff0001" /></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock">Intended status: Experimental <span class="delete">October 14, 2019</span></td><td> </td><td class="rblock">Intended status: Experimental <span class="insert">March 12, 2020</span></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock">Expires: <span class="delete">April 16,</span> 2020</td><td> </td><td class="rblock">Expires: <span class="insert">September 13,</span> 2020</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left">DMARC (Domain-based Message Authentication, Reporting, and Conformance)</td><td> </td><td class="right">DMARC (Domain-based Message Authentication, Reporting, and Conformance)</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> Extension For PSDs (Public Suffix Domains)</td><td> </td><td class="right"> Extension For PSDs (Public Suffix Domains)</td><td class="lineno" valign="top"></td></tr>
<tr><td><a name="diff0002" /></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"> draft-ietf-dmarc-psd-0<span class="delete">7</span></td><td> </td><td class="rblock"> draft-ietf-dmarc-psd-0<span class="insert">8</span></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left">Abstract</td><td> </td><td class="right">Abstract</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> DMARC (Domain-based Message Authentication, Reporting, and</td><td> </td><td class="right"> DMARC (Domain-based Message Authentication, Reporting, and</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> Conformance) is a scalable mechanism by which a mail-originating</td><td> </td><td class="right"> Conformance) is a scalable mechanism by which a mail-originating</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> organization can express domain-level policies and preferences for</td><td> </td><td class="right"> organization can express domain-level policies and preferences for</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> message validation, disposition, and reporting, that a mail-receiving</td><td> </td><td class="right"> message validation, disposition, and reporting, that a mail-receiving</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> organization can use to improve mail handling. The design of DMARC</td><td> </td><td class="right"> organization can use to improve mail handling. The design of DMARC</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> presumes that domain names represent either nodes in the tree below</td><td> </td><td class="right"> presumes that domain names represent either nodes in the tree below</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> which registrations occur, or nodes where registrations have</td><td> </td><td class="right"> which registrations occur, or nodes where registrations have</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno"></td></tr>
<tr bgcolor="gray" ><td></td><th><a name="part-l2" /><small>skipping to change at</small><em> page 1, line 49</em></th><th> </th><th><a name="part-r2" /><small>skipping to change at</small><em> page 1, line 49</em></th><td></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> Internet-Drafts are working documents of the Internet Engineering</td><td> </td><td class="right"> Internet-Drafts are working documents of the Internet Engineering</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> Task Force (IETF). Note that other groups may also distribute</td><td> </td><td class="right"> Task Force (IETF). Note that other groups may also distribute</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> working documents as Internet-Drafts. The list of current Internet-</td><td> </td><td class="right"> working documents as Internet-Drafts. The list of current Internet-</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> Drafts is at https://datatracker.ietf.org/drafts/current/.</td><td> </td><td class="right"> Drafts is at https://datatracker.ietf.org/drafts/current/.</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> Internet-Drafts are draft documents valid for a maximum of six months</td><td> </td><td class="right"> Internet-Drafts are draft documents valid for a maximum of six months</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> and may be updated, replaced, or obsoleted by other documents at any</td><td> </td><td class="right"> and may be updated, replaced, or obsoleted by other documents at any</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> time. It is inappropriate to use Internet-Drafts as reference</td><td> </td><td class="right"> time. It is inappropriate to use Internet-Drafts as reference</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> material or to cite them other than as "work in progress."</td><td> </td><td class="right"> material or to cite them other than as "work in progress."</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td><a name="diff0003" /></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"> This Internet-Draft will expire on <span class="delete">April 16</span>, 2020.</td><td> </td><td class="rblock"> This Internet-Draft will expire on <span class="insert">September 13</span>, 2020.</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left">Copyright Notice</td><td> </td><td class="right">Copyright Notice</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td><a name="diff0004" /></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"> Copyright (c) 20<span class="delete">19</span> IETF Trust and the persons identified as the</td><td> </td><td class="rblock"> Copyright (c) 20<span class="insert">20</span> IETF Trust and the persons identified as the</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> document authors. All rights reserved.</td><td> </td><td class="right"> document authors. All rights reserved.</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> This document is subject to BCP 78 and the IETF Trust's Legal</td><td> </td><td class="right"> This document is subject to BCP 78 and the IETF Trust's Legal</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> Provisions Relating to IETF Documents</td><td> </td><td class="right"> Provisions Relating to IETF Documents</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> (https://trustee.ietf.org/license-info) in effect on the date of</td><td> </td><td class="right"> (https://trustee.ietf.org/license-info) in effect on the date of</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> publication of this document. Please review these documents</td><td> </td><td class="right"> publication of this document. Please review these documents</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> carefully, as they describe your rights and restrictions with respect</td><td> </td><td class="right"> carefully, as they describe your rights and restrictions with respect</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> to this document. Code Components extracted from this document must</td><td> </td><td class="right"> to this document. Code Components extracted from this document must</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> include Simplified BSD License text as described in Section 4.e of</td><td> </td><td class="right"> include Simplified BSD License text as described in Section 4.e of</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> the Trust Legal Provisions and are provided without warranty as</td><td> </td><td class="right"> the Trust Legal Provisions and are provided without warranty as</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> described in the Simplified BSD License.</td><td> </td><td class="right"> described in the Simplified BSD License.</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left">Table of Contents</td><td> </td><td class="right">Table of Contents</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> 1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . 3</td><td> </td><td class="right"> 1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . 3</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> 2. Terminology and Definitions . . . . . . . . . . . . . . . . . 5</td><td> </td><td class="right"> 2. Terminology and Definitions . . . . . . . . . . . . . . . . . 5</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> 2.1. Conventions Used in This Document . . . . . . . . . . . . 5</td><td> </td><td class="right"> 2.1. Conventions Used in This Document . . . . . . . . . . . . 5</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> 2.2. Public Suffix Domain (PSD) . . . . . . . . . . . . . . . 5</td><td> </td><td class="right"> 2.2. Public Suffix Domain (PSD) . . . . . . . . . . . . . . . 5</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> 2.3. Longest PSD . . . . . . . . . . . . . . . . . . . . . . . 5</td><td> </td><td class="right"> 2.3. Longest PSD . . . . . . . . . . . . . . . . . . . . . . . 5</td><td class="lineno" valign="top"></td></tr>
<tr><td><a name="diff0005" /></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"> 2.4. Public Suffix Operator (PSO) . . . . . . . . . . . . . . <span class="delete">5</span></td><td> </td><td class="rblock"> 2.4. <span class="insert">Organizational Domain . . . . . . . . . . . . . . . . . . 6</span></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> 2.5.</span> PSO Controlled Domain Names . . . . . . . . . . . . . . . 6</td><td> </td><td class="rblock"><span class="insert"> 2.5.</span> Public Suffix Operator (PSO) . . . . . . . . . . . . . . <span class="insert">6</span></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"> <span class="delete">2.6.</span> Non-existent Domains . . . . . . . . . . . . . . . . . . 6</td><td> </td><td class="rblock"><span class="insert"> 2.6.</span> PSO Controlled Domain Names . . . . . . . . . . . . . . . 6</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"> <span class="insert">2.7.</span> Non-existent Domains . . . . . . . . . . . . . . . . . . 6</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> 3. PSD DMARC Updates to DMARC Requirements . . . . . . . . . . . 6</td><td> </td><td class="right"> 3. PSD DMARC Updates to DMARC Requirements . . . . . . . . . . . 6</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> 3.1. General Updates . . . . . . . . . . . . . . . . . . . . . 6</td><td> </td><td class="right"> 3.1. General Updates . . . . . . . . . . . . . . . . . . . . . 6</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> 3.2. Section 6.3 General Record Format . . . . . . . . . . . . 6</td><td> </td><td class="right"> 3.2. Section 6.3 General Record Format . . . . . . . . . . . . 6</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> 3.3. Section 6.5. Domain Owner Actions . . . . . . . . . . . 7</td><td> </td><td class="right"> 3.3. Section 6.5. Domain Owner Actions . . . . . . . . . . . 7</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> 3.4. Section 6.6.1. Extract Author Domain . . . . . . . . . . 7</td><td> </td><td class="right"> 3.4. Section 6.6.1. Extract Author Domain . . . . . . . . . . 7</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> 3.5. Section 6.6.3. Policy Discovery . . . . . . . . . . . . 7</td><td> </td><td class="right"> 3.5. Section 6.6.3. Policy Discovery . . . . . . . . . . . . 7</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> 3.6. Section 7. DMARC Feedback . . . . . . . . . . . . . . . 8</td><td> </td><td class="right"> 3.6. Section 7. DMARC Feedback . . . . . . . . . . . . . . . 8</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> 4. Privacy Considerations . . . . . . . . . . . . . . . . . . . 8</td><td> </td><td class="right"> 4. Privacy Considerations . . . . . . . . . . . . . . . . . . . 8</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> 4.1. Feedback leakage . . . . . . . . . . . . . . . . . . . . 8</td><td> </td><td class="right"> 4.1. Feedback leakage . . . . . . . . . . . . . . . . . . . . 8</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> 5. Security Considerations . . . . . . . . . . . . . . . . . . . 9</td><td> </td><td class="right"> 5. Security Considerations . . . . . . . . . . . . . . . . . . . 9</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> 6. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 9</td><td> </td><td class="right"> 6. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 9</td><td class="lineno" valign="top"></td></tr>
<tr><td><a name="diff0006" /></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"> 6.1. Subdomain Policy Tag . . . . . . . . . . . . . . . . . . <span class="delete"> 9</span></td><td> </td><td class="rblock"> 6.1. Subdomain Policy Tag . . . . . . . . . . . . . . . . . . <span class="insert">10</span></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> 7. References . . . . . . . . . . . . . . . . . . . . . . . . . 10</td><td> </td><td class="right"> 7. References . . . . . . . . . . . . . . . . . . . . . . . . . 10</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> 7.1. Normative References . . . . . . . . . . . . . . . . . . 10</td><td> </td><td class="right"> 7.1. Normative References . . . . . . . . . . . . . . . . . . 10</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> 7.2. Informative References . . . . . . . . . . . . . . . . . 10</td><td> </td><td class="right"> 7.2. Informative References . . . . . . . . . . . . . . . . . 10</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> Appendix A. The Experiment . . . . . . . . . . . . . . . . . . . 11</td><td> </td><td class="right"> Appendix A. The Experiment . . . . . . . . . . . . . . . . . . . 11</td><td class="lineno" valign="top"></td></tr>
<tr><td><a name="diff0007" /></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"> A.1. PSD DMARC Privacy Concern Mitigation . . . . . . . . . . 1<span class="delete">1</span></td><td> </td><td class="rblock"> A.1. PSD DMARC Privacy Concern Mitigation . . . . . . . . . . 1<span class="insert">2</span></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> A.2. Non-Existent Subdomain Policy . . . . . . . . . . . . . . 12</td><td> </td><td class="right"> A.2. Non-Existent Subdomain Policy . . . . . . . . . . . . . . 12</td><td class="lineno" valign="top"></td></tr>
<tr><td><a name="diff0008" /></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"> Appendix B. DMARC PSD Registry Examples . . . . . . . . . . . . 1<span class="delete">2</span></td><td> </td><td class="rblock"> Appendix B. DMARC PSD Registry Examples . . . . . . . . . . . . 1<span class="insert">3</span></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> B.1. DMARC PSD DNS Query Service . . . . . . . . . . . . . . . 13</td><td> </td><td class="right"> B.1. DMARC PSD DNS Query Service . . . . . . . . . . . . . . . 13</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> B.2. DMARC Public Suffix Domain (PSD) Registry . . . . . . . . 13</td><td> </td><td class="right"> B.2. DMARC Public Suffix Domain (PSD) Registry . . . . . . . . 13</td><td class="lineno" valign="top"></td></tr>
<tr><td><a name="diff0009" /></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"> B.3. DMARC PSD PSL Extension . . . . . . . . . . . . . . . . . <span class="delete">13</span></td><td> </td><td class="rblock"> B.3. DMARC PSD PSL Extension . . . . . . . . . . . . . . . . . <span class="insert">14</span></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"> </td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> Appendix C. Implementations . . . . . . . . . . . . . . . . . . 14</td><td> </td><td class="right"> Appendix C. Implementations . . . . . . . . . . . . . . . . . . 14</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> C.1. Authheaders Module . . . . . . . . . . . . . . . . . . . 14</td><td> </td><td class="right"> C.1. Authheaders Module . . . . . . . . . . . . . . . . . . . 14</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> C.2. Zdkimfilter Module . . . . . . . . . . . . . . . . . . . 14</td><td> </td><td class="right"> C.2. Zdkimfilter Module . . . . . . . . . . . . . . . . . . . 14</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> Acknowledgements . . . . . . . . . . . . . . . . . . . . . . . . 14</td><td> </td><td class="right"> Acknowledgements . . . . . . . . . . . . . . . . . . . . . . . . 14</td><td class="lineno" valign="top"></td></tr>
<tr><td><a name="diff0010" /></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"> Author's Address . . . . . . . . . . . . . . . . . . . . . . . . 1<span class="delete">4</span></td><td> </td><td class="rblock"> Author's Address . . . . . . . . . . . . . . . . . . . . . . . . 1<span class="insert">5</span></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left">1. Introduction</td><td> </td><td class="right">1. Introduction</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> DMARC [RFC7489] provides a mechanism for publishing organizational</td><td> </td><td class="right"> DMARC [RFC7489] provides a mechanism for publishing organizational</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> policy information to email receivers. DMARC allows policy to be</td><td> </td><td class="right"> policy information to email receivers. DMARC allows policy to be</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> specified for both individual domains and for organizational domains</td><td> </td><td class="right"> specified for both individual domains and for organizational domains</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> and their sub-domains within a single organization. DMARC leverages</td><td> </td><td class="right"> and their sub-domains within a single organization. DMARC leverages</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> public suffix lists to determine which domains are organizational</td><td> </td><td class="right"> public suffix lists to determine which domains are organizational</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> domains. It presumes that public suffix list listed domains are not</td><td> </td><td class="right"> domains. It presumes that public suffix list listed domains are not</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> organizational domains and not subject to DMARC processing; domains</td><td> </td><td class="right"> organizational domains and not subject to DMARC processing; domains</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno"></td></tr>
<tr bgcolor="gray" ><td></td><th><a name="part-l3" /><small>skipping to change at</small><em> page 5, line 46</em></th><th> </th><th><a name="part-r3" /><small>skipping to change at</small><em> page 6, line 5</em></th><td></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> ".gov.uk". Names at which such registrations occur are called Public</td><td> </td><td class="right"> ".gov.uk". Names at which such registrations occur are called Public</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> Suffix Domains (PSDs), and a registration consists of a label</td><td> </td><td class="right"> Suffix Domains (PSDs), and a registration consists of a label</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> selected by the registrant to which a desirable PSD is appended. For</td><td> </td><td class="right"> selected by the registrant to which a desirable PSD is appended. For</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> example, "ietf.org" is a registered domain name, and ".org" is its</td><td> </td><td class="right"> example, "ietf.org" is a registered domain name, and ".org" is its</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> PSD.</td><td> </td><td class="right"> PSD.</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left">2.3. Longest PSD</td><td> </td><td class="right">2.3. Longest PSD</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> The longest PSD is the Organizational Domain with one label removed.</td><td> </td><td class="right"> The longest PSD is the Organizational Domain with one label removed.</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td><a name="diff0011" /></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock">2.4. Public Suffix Operator (PSO)</td><td> </td><td class="rblock">2.4. <span class="insert">Organizational Domain</span></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> The term Organizational Domains is defined in DMARC [RFC7489]</span></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> Section 3.2.</span></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"></span></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert">2.5.</span> Public Suffix Operator (PSO)</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> A Public Suffix Operator manages operations within its PSD.</td><td> </td><td class="right"> A Public Suffix Operator manages operations within its PSD.</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td><a name="diff0012" /></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock">2.<span class="delete">5</span>. PSO Controlled Domain Names</td><td> </td><td class="rblock">2.<span class="insert">6</span>. PSO Controlled Domain Names</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> PSO Controlled Domain Names are names in the DNS that are managed by</td><td> </td><td class="right"> PSO Controlled Domain Names are names in the DNS that are managed by</td><td class="lineno" valign="top"></td></tr>
<tr><td><a name="diff0013" /></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"> a PSO and are not available for use as Organizational <span class="delete">Domains (the</span></td><td> </td><td class="rblock"> a PSO and are not available for use as Organizational <span class="insert">Domains.</span></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> term Organizational Domains is defined in DMARC [RFC7489]</span></td><td> </td><td class="rblock"> Depending on PSD policy, these will have one (e.g., ".com") or more</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"><span class="delete"> Section 3.2).</span> Depending on PSD policy, these will have one (e.g.,</td><td> </td><td class="rblock"> (e.g., ".co.uk") name components.</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"> ".com") or more (e.g., ".co.uk") name components.</td><td> </td><td class="rblock"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td><a name="diff0014" /></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock">2.<span class="delete">6</span>. Non-existent Domains</td><td> </td><td class="rblock">2.<span class="insert">7</span>. Non-existent Domains</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> For DMARC purposes, a non-existent domain is a domain for which there</td><td> </td><td class="right"> For DMARC purposes, a non-existent domain is a domain for which there</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> is an NXDOMAIN or NODATA response for A, AAAA, and MX records. This</td><td> </td><td class="right"> is an NXDOMAIN or NODATA response for A, AAAA, and MX records. This</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> is a broader definition than that in NXDOMAIN [RFC8020].</td><td> </td><td class="right"> is a broader definition than that in NXDOMAIN [RFC8020].</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left">3. PSD DMARC Updates to DMARC Requirements</td><td> </td><td class="right">3. PSD DMARC Updates to DMARC Requirements</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> This document updates DMARC [RFC7489] as follows:</td><td> </td><td class="right"> This document updates DMARC [RFC7489] as follows:</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left">3.1. General Updates</td><td> </td><td class="right">3.1. General Updates</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno"></td></tr>
<tr bgcolor="gray" ><td></td><th><a name="part-l4" /><small>skipping to change at</small><em> page 9, line 30</em></th><th> </th><th><a name="part-r4" /><small>skipping to change at</small><em> page 9, line 38</em></th><td></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> DMARC.</td><td> </td><td class="right"> DMARC.</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left">5. Security Considerations</td><td> </td><td class="right">5. Security Considerations</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> This document does not change the Security Considerations of</td><td> </td><td class="right"> This document does not change the Security Considerations of</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> [RFC7489] and [RFC7960].</td><td> </td><td class="right"> [RFC7489] and [RFC7960].</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> The risks of the issues identified in [RFC7489], Section 12.3, DNS</td><td> </td><td class="right"> The risks of the issues identified in [RFC7489], Section 12.3, DNS</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> Security, are amplified by PSD DMARC. In particular, DNS cache</td><td> </td><td class="right"> Security, are amplified by PSD DMARC. In particular, DNS cache</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> poisoning (or Name Chaining), see [RFC3833] for details, consequences</td><td> </td><td class="right"> poisoning (or Name Chaining), see [RFC3833] for details, consequences</td><td class="lineno" valign="top"></td></tr>
<tr><td><a name="diff0015" /></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"> are increased because a sucessful attack would potentially have a</td><td> </td><td class="rblock"> are increased because a suc<span class="insert">c</span>essful attack would potentially have a</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> much wider scope.</td><td> </td><td class="right"> much wider scope.</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> The risks of the issues identified in [RFC7489], Section 12.5,</td><td> </td><td class="right"> The risks of the issues identified in [RFC7489], Section 12.5,</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> External Reporting Addresses, are amplified by PSD DMARC. By design,</td><td> </td><td class="right"> External Reporting Addresses, are amplified by PSD DMARC. By design,</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> PSD DMARC causes unrequested reporting of feedback to entities</td><td> </td><td class="right"> PSD DMARC causes unrequested reporting of feedback to entities</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> external to the Organizational Domain. This is discussed in more</td><td> </td><td class="right"> external to the Organizational Domain. This is discussed in more</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> detail in Section 4.</td><td> </td><td class="right"> detail in Section 4.</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left">6. IANA Considerations</td><td> </td><td class="right">6. IANA Considerations</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno"></td></tr>
<tr bgcolor="gray" ><td></td><th><a name="part-l5" /><small>skipping to change at</small><em> page 13, line 39</em></th><th> </th><th><a name="part-r5" /><small>skipping to change at</small><em> page 13, line 49</em></th><td></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> +-------------+---------------+</td><td> </td><td class="right"> +-------------+---------------+</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> | PSD | Status |</td><td> </td><td class="right"> | PSD | Status |</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> +-------------+---------------+</td><td> </td><td class="right"> +-------------+---------------+</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> | .bank | current |</td><td> </td><td class="right"> | .bank | current |</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> +-------------+---------------+</td><td> </td><td class="right"> +-------------+---------------+</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> | .insurance | current |</td><td> </td><td class="right"> | .insurance | current |</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> +-------------+---------------+</td><td> </td><td class="right"> +-------------+---------------+</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> | .gov.uk | current |</td><td> </td><td class="right"> | .gov.uk | current |</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> +-------------+---------------+</td><td> </td><td class="right"> +-------------+---------------+</td><td class="lineno" valign="top"></td></tr>
<tr><td><a name="diff0016" /></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"> <span class="insert">| .mil | current |</span></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="lblock"></td><td> </td><td class="rblock"><span class="insert"> +-------------+---------------+</span></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left">B.3. DMARC PSD PSL Extension</td><td> </td><td class="right">B.3. DMARC PSD PSL Extension</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> [psddmarc.org] provides a PSL like file to enable to facilitate</td><td> </td><td class="right"> [psddmarc.org] provides a PSL like file to enable to facilitate</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> identification of PSD DMARC participants. Contents are functionally</td><td> </td><td class="right"> identification of PSD DMARC participants. Contents are functionally</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> identical to the IANA like registry, but presented in a different</td><td> </td><td class="right"> identical to the IANA like registry, but presented in a different</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> format.</td><td> </td><td class="right"> format.</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"></td><td> </td><td class="right"></td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> When using this approach, the input domain of the extension lookup is</td><td> </td><td class="right"> When using this approach, the input domain of the extension lookup is</td><td class="lineno" valign="top"></td></tr>
<tr><td class="lineno" valign="top"></td><td class="left"> supposed to be the output domain of the regular PSL lookup, i.e. the</td><td> </td><td class="right"> supposed to be the output domain of the regular PSL lookup, i.e. the</td><td class="lineno" valign="top"></td></tr>
<tr><td></td><td class="left"></td><td> </td><td class="right"></td><td></td></tr>
<tr bgcolor="gray"><th colspan="5" align="center"><a name="end"> End of changes. 16 change blocks. </a></th></tr>
<tr class="stats"><td></td><th><i>21 lines changed or deleted</i></th><th><i> </i></th><th><i>29 lines changed or added</i></th><td></td></tr>
<tr><td colspan="5" align="center" class="small"><br/>This html diff was produced by rfcdiff 1.41. The latest version is available from <a href="http://www.tools.ietf.org/tools/rfcdiff/" >http://tools.ietf.org/tools/rfcdiff/</a> </td></tr>
</table>
</body>
</html>