I have the following comments on the draft charter:
1. The second paragraph has the sentence:
The DKIM working group will also produce security requirements to guide
their efforts, and will analyze the impact on senders and receivers who are
not using DKIM, particularly any cases in which mail may be inappropriately
labeled as suspicious or spoofed.
I don't understand what the last clause has to do with people who are not
using DKIM. If they are not using DKIM then mail could not be labeled as
suspicious or spoofed. I assume that this should read:
The DKIM working group will also produce security requirements to guide
their efforts. This will include the impact of sending domains that are not
using DKIM (mail may be inappropriately labeled as suspicious or spoofed by
receiving domains that use DKIM). Additionally it will include the impact
of receiving domains that are not using DKIM (**** what is an example attack
or problem????****).
2. Formatting issue -- is paragraph 3 really three paragraphs or just three
sentences within a single paragraph
3. On the deliverables I would like to see the first delivable moved to the
end of the list (to match the order of milestones). It makes the tracking
between the two lists simpler.
4. It is not clear to me that you can separate the development of the DNS
RR from the base specification. My assumption is that the base
specification is stating how the addressing of the DNS RR is to be done and
to effectively specfiy the content. It makes more sense to me to pull each
of the different DNS RR's into the respective documents.
Jim Schaad
_______________________________________________
ietf-dkim mailing list
http://dkim.org