On 4/14/2014 10:53 AM, Murray S. Kucherawy wrote:
Something's amiss here. What new semantics does DKIM attach to From:?
As far as I know, it only requires that the field be signed. It doesn't
require that it be interpreted in a particular way or that it contain
any particular value.
Correct.
DKIM does not carry any semantics about message content, other than the
DKIM-Signature field.
A side-effect of the DKIM mechanism is some transit data integrity
between signing and validation, but that has nothing to do with content
'validity'.
DMARC, on the other hand, defines an "alignment" between the
rfc5322.From field domain name and the domain name in the DKIM d= value
and or (for SPF) the domain name in the rfc5321.MailFrom command.
d/
--
Dave Crocker
Brandenburg InternetWorking
bbiw.net