<?xml version="1.0" encoding="UTF-8"?>
  <?xml-stylesheet type="text/xsl" href="rfc2629.xslt" ?>
  <!-- generated by https://github.com/cabo/kramdown-rfc version 1.7.19 (Ruby 2.6.10) -->


<!DOCTYPE rfc  [
  <!ENTITY nbsp    "&#160;">
  <!ENTITY zwsp   "&#8203;">
  <!ENTITY nbhy   "&#8209;">
  <!ENTITY wj     "&#8288;">

]>


<rfc ipr="trust200902" docName="draft-ietf-dkim-dkim2-spec-04" category="std" consensus="true" submissionType="IETF" tocInclude="true" sortRefs="true" symRefs="true">
  <front>
    <title abbrev="DKIM2 Signatures">DomainKeys Identified Mail Signatures v2 (DKIM2)</title>

    <author initials="R." surname="Clayton" fullname="Richard Clayton">
      <organization>Yahoo</organization>
      <address>
        <email>rclayton@yahooinc.com</email>
      </address>
    </author>
    <author initials="W." surname="Chuang" fullname="Wei Chuang">
      <organization>Google</organization>
      <address>
        <email>weihaw@google.com</email>
      </address>
    </author>
    <author initials="B." surname="Gondwana" fullname="Bron Gondwana">
      <organization>Fastmail Pty Ltd</organization>
      <address>
        <postal>
          <street>Level 2, 114 William Street</street>
          <code>3000</code>
          <country>Australia</country>
        </postal>
        <phone>+61 457 416 436</phone>
        <email>brong@fastmailteam.com</email>
      </address>
    </author>

    <date year="2026" month="July" day="05"/>

    
    
    <keyword>Internet-Draft</keyword>

    <abstract>


<?line 63?>

<t>DomainKeys Identified Mail v2 (DKIM2) permits a person, role, or
organization that owns a signing domain to document that it has
handled an email message by associating their domain with the
message.  This is achieved by providing a hash value that has
been calculated on the current contents of the message and then applying a cryptographic
signature that covers the hash values and other details about the
transmission of the message. Verification is performed by querying an entry
within the signing domain's DNS space to retrieve an appropriate public
key. As a message is transferred from author to recipient systems that
alter the body or header fields will provide details of their changes
and calculate new hash values. Further signatures 
will be added to provide a validatable "chain". This permits validators
to identify the nature of changes made by intermediaries and apply a
reputation to the systems that made changed. DKIM2 also allows
recipients to detect when messages have been unexpectedly "replayed"
and will ensure that Delivery Status Notifications are only sent
to entities that were involved in the transmission of a message.</t>



    </abstract>



  </front>

  <middle>


<?line 83?>

<section anchor="introduction"><name>Introduction</name>

<t>DomainKeys Identified Mail v2 (DKIM2) permits a person, role, or
organization to document that they have handled an email message by
associating a domain name <xref target="RFC1034"></xref> with the message <xref target="RFC5322"></xref>. A
public key signature is used to record that they have been able
to read the contents of the message and write to it.</t>

<t>Verification of claims is achieved by fetching a public key stored
in the DNS under the relevant domain and then checking the signature.</t>

<t>Message transit from author to recipient is through
Forwarders that typically make no substantive change to the message
content and thus preserve the DKIM2 signature. Where they do make
a change the changes they have made are documented so that
these can be "undone" and the original signature validated.</t>

<t>When a message is forwarded from one system to another an
additional DKIM2 signature is added on each occasion. This chain
of custody assists validators in distinguishing between messages that
were intended to be sent to a particular email address and those
that are being "replayed" to that address.</t>

<t>The chain of custody can also be used to ensure that delivery status
notifications are only sent to entities that were involved in the
transmission of a message.</t>

<t>Organizations that process a message can add to their signature
a request for feedback as to any opinion (for example, that the
email was considered to be spam) that the eventual recipient of
the message wishes to share.</t>

<section anchor="dkim2-architecture-documents"><name>DKIM2 Architecture Documents</name>

<t>Readers are advised to be familiar with the material in TBA, TBA and TBA
which provide the background for the development of DKIM2, an overview
of the service, and deployment and operations guidance and advice.</t>

</section>
</section>
<section anchor="terminology-and-definitions"><name>Terminology and Definitions</name>

<t>This section defines terms used in the rest of the document.</t>

<t>The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",
"SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and
"OPTIONAL" in this document are to be interpreted as described in
<xref target="RFC2119"></xref>.  These words take their normative meanings only when they
are presented in ALL UPPERCASE.</t>

<t>DKIM2 is designed to operate within the Internet Mail service, as
defined in <xref target="RFC5598"></xref>.  Basic email terminology is taken from that
specification.</t>

<t>DKIM2 inherits many ideas from DKIM (<xref target="RFC6376"></xref>) which, for clarity
we refer to in this specification as DKIM1. In addition, some features
were influenced by experience with (see <xref target="CONCLUDEARC"></xref>) the experimental
ARC protocol (<xref target="RFC8617"></xref>).</t>

<t>Syntax descriptions use Augmented BNF (ABNF) <xref target="RFC5234"></xref>.</t>

<t>This document uses JSON <xref target="RFC8259"></xref> to encode the "recipes" which
record changes made to a message header fields or body.
The JSON objects are then base64 encoded. This means that a
standard JSON parser can be used to create what may be quite
complex data structures. Unrecognised fields within JSON objects
MUST be ignored.</t>

<section anchor="signer"><name>Signer</name>

<t>Elements in the mail system that sign messages on behalf of a domain
are referred to as Signers.  These may be MUAs (Mail User Agents),
MSAs (Mail Submission Agents), MTAs (Mail Transfer Agents), or other
agents such as mailing list "exploders".  In general, any Signer will
be involved in the injection of a message into the message system in
some way.  The key point is that a message must be signed before it
leaves the administrative domain of the Signer.</t>

</section>
<section anchor="forwarder"><name>Forwarder</name>

<t><xref target="RFC5598"></xref> defines a Relay as transmitting or retransmitting a message
but states that it will not modify the envelope information or the
message content semantics. It also defines a Gateway as a hybrid of
User and Relay that connects heterogeneous mail services. In this
document we use the concept of a Forwarder which is an MTA that receives
a message and then, as an alternative to delivering it into a
destination mailbox, can forward it on to another system in an
automated, pre-determined, manner.</t>

</section>
<section anchor="reviser"><name>Reviser</name>

<t>As will be seen, a Forwarder may alter the message content or header
fields, in such a way that existing signatures on the message will
no longer validate. If so, then a record will be made of these
changes. We call a Forwarder that makes such changes a Reviser.</t>

</section>
<section anchor="verifier"><name>Verifier</name>

<t>Elements in the mail system that verify signatures are referred to as
Verifiers.  These may be Forwarders, Revisers, MTAs, Mail Delivery
Agents (MDAs), or MUAs.
It is an expectation of DKIM2 that a recipient of a message will
wish to verify some or all signatures before determining whether or
not to accept the message or pass it on to another entity.</t>

</section>
<section anchor="signing-domain"><name>Signing Domain</name>

<t>A domain name associated with a signature. This domain may be
associated with the author of an email, their organization, a
company hired to deliver the email, a mailing list operator, or
some other entity that handles email. What they have in common is
that at some point they had access to the entire contents of the
email and were in a position to add their signature to the email.</t>

</section>
<section anchor="originator"><name>Originator</name>

<t>The entity that creates and sends the initial form of a message.
The Originator adds the first Message-Instance header field (m=1) and
the first DKIM2-Signature header field (i=1) to the message.</t>

</section>
<section anchor="header-field"><name>Header Field</name>

<t>As defined in <xref target="RFC5322"></xref>, a header field is a single logical line in
the message header consisting of a field name, a colon, and a field
body (value).  In this document "header field" always refers to a
single field; "header fields" (plural) refers to multiple fields.
The unqualified term "header" is avoided to prevent ambiguity.</t>

</section>
<section anchor="tag"><name>Tag</name>

<t>A named element within a header field (see <xref target="hfMessageInstance"/>
and <xref target="hfDKIM2signature"/>).  A tag
consists of a tag-name and a tag-value separated by an equals sign.
Tags are separated by semicolons within the header field.</t>

</section>
<section anchor="message-body"><name>Message Body</name>

<t>The content of an email message that follows the blank line after
the header fields, treated as a sequence of octets.  In this document,
the terms "body" and "message body" are used interchangeably.</t>

</section>
<section anchor="hash"><name>Hash</name>

<t>A fixed-length value produced by applying a cryptographic hash
function (such as SHA-256) to an input.  DKIM2 uses hashes to
create a compact, verifiable representation of message header fields
and the message body.</t>

</section>
<section anchor="glossary"><name>Glossary</name>

<t>The following terms are used throughout this document:</t>

<dl>
  <dt>DKIM1</dt>
  <dd>
    <t>The original DomainKeys Identified Mail protocol as specified in
<xref target="RFC6376"></xref>.</t>
  </dd>
  <dt>DKIM2-Signature</dt>
  <dd>
    <t>A header field containing a cryptographic signature over the
Message-Instance and DKIM2-Signature header fields of a message,
along with metadata about the signing domain, SMTP envelope, and
timestamp.</t>
  </dd>
  <dt>Message-Instance</dt>
  <dd>
    <t>A header field containing cryptographic hashes of the message
header fields and body, along with optional recipes that allow
undoing changes made at that hop.</t>
  </dd>
  <dt>Recipe</dt>
  <dd>
    <t>A set of instructions encoded as a JSON object within the r= tag
of a Message-Instance header field.  Recipes allow a Verifier to
reconstruct the previous state of a message from its current state,
by specifying which parts of the header fields or body to copy and
which literal values to substitute.</t>
  </dd>
  <dt>Chain of Custody</dt>
  <dd>
    <t>The sequence of DKIM2-Signature header fields on a message, each
recording the SMTP envelope addresses (MAIL FROM and RCPT TO) used
at each hop.  A valid chain of custody demonstrates that the message
followed a plausible path from Originator to the current recipient.</t>
  </dd>
  <dt>Selector</dt>
  <dd>
    <t>A subdivision of the key namespace for a signing domain, used
to look up the public key in DNS.  The selector value is combined
with the signing domain to form the DNS query name:
selector._domainkey.domain.</t>
  </dd>
</dl>

</section>
<section anchor="whitespace"><name>Whitespace</name>

<t>There are two forms of whitespace used in this specification:</t>

<t><list style="symbols">
  <t>WSP represents simple whitespace, i.e., a space or a tab character
(formal definition in <xref target="RFC5234"></xref>).</t>
  <t>FWS is folding whitespace.  It allows multiple lines separated by
CRLF followed by at least one whitespace, to be joined.</t>
</list></t>

<t>The formal ABNF for these are (WSP given for information only):</t>

<figure><artwork><![CDATA[
WSP =   SP / HTAB
FWS =   [*WSP CRLF] 1*WSP
]]></artwork></figure>

<t>The definition of FWS is identical to that in <xref target="RFC5322"></xref> except for
the exclusion of obs-FWS.</t>

</section>
<section anchor="imported-abnf-tokens"><name>Imported ABNF Tokens</name>

<t>The following tokens are imported from other RFCs as noted.  Those
RFCs should be considered definitive.</t>

<t>The following tokens are imported from <xref target="RFC5321"></xref>:</t>

<t><list style="symbols">
  <t>"Domain"</t>
  <t>"Forward-path"</t>
  <t>"reverse-path"</t>
</list></t>

<t>The following tokens are imported from <xref target="RFC5322"></xref>:</t>

<t><list style="symbols">
  <t>"field-name" (name of a header field)</t>
</list></t>

<t>Other tokens not defined herein are imported from <xref target="RFC5234"></xref>.  These
are intuitive primitives such as SP, HTAB, WSP, ALPHA, DIGIT, CRLF,
etc.</t>

</section>
<section anchor="common-abnf-tokens"><name>Common ABNF Tokens</name>

<t>The following ABNF tokens are used elsewhere in this document:</t>

<figure><artwork><![CDATA[
ALPHADIGITD  = (ALPHA / DIGIT / "-" / "_")

textstring   =  [FWS] ALPHADIGITD *(ALPHADIGITD) [FWS]

ALPHADIGITPS =  (FWS / ALPHA / DIGIT / "+" / "/")

base64string =  ALPHADIGITPS *(ALPHADIGITPS) [[FWS] "=" [[FWS] "="]]
]]></artwork></figure>

<t>Note that base64strings are defined in <xref target="RFC4648"></xref>, but that document
does not contain any ABNF. A base64string MUST be padded with zero
bits and trailing = characters provided if needed. This allows
implementations to compare base64string values without decoding
them.</t>

<t>Note that the definition of base64string allows
for the presence of FWS, which simplifies folding header fields
to an allowable line length. FWS within base64strings will be
ignored when their value is being used.</t>

</section>
</section>
<section anchor="algorithms"><name>Signing and Verification Cryptographic Algorithms</name>

<t>DKIM2 supports multiple hashing and digital signature algorithms. One
hash function (SHA256) is specified here and two signing algorithms
are defined by this specification: RSA-SHA256 and Ed25519-SHA256.
Signers and Verifiers MUST implement SHA256. Signers SHOULD implement
both RSA-SHA256 and Ed25519-SHA256. Verifiers MUST implement both
RSA-SHA256 and Ed25519-SHA256.</t>

<section anchor="the-sha256-hashing-algorithm"><name>The SHA256 Hashing Algorithm</name>

<t>The SHA256 hashing algorithm is used to compute body and
header hashes as defined in <xref target="computing-body-hash"/> and
<xref target="computing-header-hash"/>.</t>

<t>The resultant values are identified by the text string "sha256" and
placed into Message-Instance header fields.</t>

</section>
<section anchor="the-rsa-sha256-signing-algorithm"><name>The RSA-SHA256 Signing Algorithm</name>

<t>The RSA-SHA256 Signing Algorithm computes a hash over all the Message-Instance
and DKIM2-Signature header fields as described in <xref target="calculate-signature"/> using
SHA-256 (FIPS-180-4-2015) as the hash-alg.  That
hash is then signed by the Signer using the RSA algorithm (defined in
PKCS#1 version 1.5 <xref target="RFC8017"></xref>) as the crypt-alg and the Signer's
private key.  The hash MUST NOT be truncated or converted into any
form other than the native binary form before being signed.  The
signing algorithm MUST use a public exponent of 65537.</t>

<t>Signers MUST use RSA keys of at least 1024 bits.  Verifiers MUST be able
to validate signatures with keys ranging from 1024 bits to 2048 bits, and
they MAY be able to validate signatures with larger keys.</t>

<t>The signature value (expressed in base64) is placed (with the identifying
text string "rsa-sha256") into DKIM2-Signature header fields.</t>

</section>
<section anchor="the-ed25519-sha256-signing-algorithm"><name>The Ed25519-SHA256 Signing Algorithm</name>

<t>The Ed25519-SHA256 Signing Algorithm computes a hash over all the Message-Instance
and DKIM2-Signature fields as described in <xref target="calculate-signature"/> using
SHA-256 (FIPS-180-4-2015) as the hash-alg. It signs the hash with the PureEdDSA
variant Ed25519, as defined in Section 5.1 of <xref target="RFC8032"></xref>.</t>

<t>The signature value (expressed in base64) is placed (with the identifying
text string "ed25519-sha256") into DKIM2-Signature header fields.</t>

</section>
<section anchor="other-algorithms"><name>Other Algorithms</name>

<t>Other algorithms MAY be defined in the future.  Verifiers MUST ignore
any hashes or signatures using algorithms that they do not implement.</t>

</section>
<section anchor="selectors"><name>Selectors</name>

<t>To support multiple concurrent public keys per signing domain, the
key namespace is subdivided using "selectors".</t>

<t>The number of public keys and corresponding selectors for each domain
is determined by the domain owner. Many domain owners will use just one
selector, whereas administratively distributed organizations can choose
to manage disparate selectors
and key pairs in different regions or on different email servers.
Selectors can also be used to delegate a signing authority, which
can be withdrawn at any time. Selectors also make it possible to
seamlessly replace keys on a routine basis by signing with a new
selector, while keeping the key associated with the old selector
available.</t>

<t>Periods are allowed in selectors and are component separators. Periods in
selectors define DNS label boundaries in a manner similar to the
conventional use in domain names.  This will allow portions of
the selector namespace to be delegated.</t>

<t>ABNF:</t>

<figure><artwork><![CDATA[
selector = Domain
]]></artwork></figure>

</section>
<section anchor="key_management"><name>Key Management</name>

<t>Some level of assurance is required that
a public key is associated with the claimed Signer. DKIM2
does this by fetching the key from the DNS for the domain specified
in the d= field of the DKIM2-Signature header field.</t>

<t>DKIM2 keys are stored in a subdomain named "_domainkey".  Given a
DKIM2-Signature field with a "d=" tag of "example.com" and a selector
of "foo.bar", the DNS query will be for "foo.bar._domainkey.example.com".</t>

<t>NOTE: these keys are no different, and are stored in the same locations
as those for DKIM1 (<xref target="RFC6376"></xref>).</t>

<t>Further details can be found in <xref target="DKIMKEYS"></xref>.</t>

</section>
</section>
<section anchor="ignoreheaders"><name>Unsigned Header Fields</name>

<t>As explained in detail below, DKIM2 will provide a cryptographic
signature for all header fields that are present within a message,
whether they have a standardised meaning or are just placed there
at the whim of a particular sender.</t>

<t>However, for reasons of simplicity some header fields are not signed
and processing of the message MUST be performed as if they were not
present.</t>

<t>The exceptions fall into three classes:</t>

<t><list style="numbers" type="1">
  <t>Trace Headers  <vspace blankLines='1'/>
"Received" or "Return-Path" header fields MUST be ignored. These are
Trace Headers as described in <xref target="RFC5321"></xref> and serve only to document
details of the SMTP transmission process.  <vspace blankLines='1'/>
The experimental "Delivered-To:" header field (<xref target="RFC9228"></xref>) MUST also
be ignored.</t>
  <t>Other Email Authentication Mechanisms  <vspace blankLines='1'/>
"DKIM-Signature" header fields and any header fields whose field name
starts with "ARC-" MUST be ignored.  <vspace blankLines='1'/>
Not including DKIM1 and ARC header fields means that systems that
wish to add other types of signature as well as a DKIM2 signature
are free to do this in any convenient order.</t>
  <t>Headers With Purely Local Meaning  <vspace blankLines='1'/>
"Authentication-Results header fields MUST be ignored. These header
fields are defined in <xref target="RFC8601"></xref> where it is made clear that their
contents are only intended for use within the the ""trust boundary"
of an Administrative Management Domain". As they can only used
reliably within that trust boundary there has been no need to
secure them cryptographically and given how they may be added or
removed as messages cross trust boundaries it is inconvenient and
unnecessary for DKIM2 to sign them.  <vspace blankLines='1'/>
Header fields with a header field name starting with "X-" MUST be
ignored. Currently deployed email systems use these fields as
proprietary Trace headers or for other proprietary reasons. They
have no defined meaning for other systems and it considerably
simplifies reporting on changes to header fields to ignore them. Note
that the recommendations in <xref target="RFC6648"></xref> mean that it is most
unlikely that any header field name starting "X-" will be developed
within the IETF.</t>
</list></t>

<section anchor="summary"><name>Summary</name>

<t>These header fields are not signed:</t>

<figure><artwork><![CDATA[
ARC-*:
Authentication-Results:
Delivered-To:
DKIM-Signature:
Received:
Return-Path:
X-*:
]]></artwork></figure>

</section>
</section>
<section anchor="JSONrecipe"><name>Recipes</name>

<t>A set of "recipes" is used to recreate the previous version of the body
and/or header fields of a message. The recipes are provided
within a JSON object with the schema:</t>

<figure><artwork><![CDATA[
{
  "$schema": "https://json-schema.org/draft/2020-12/schema",
  "$id": "https://dkim2.org/schemas/recipe-v1",
  "title": "DKIM2 recipes",
  "description": "see draft-dkim-dkim2-spec",
  "type": "object",
  "properties": {
    "h": {
      "description": "recipes to recreate specific header fields",
      "type": "object",
      "minProperties": 1,
      "additionalProperties": { "$ref": "#/$defs/recipe-steps" }
    },
    "b": {
      "description": "recipes to recreate the body",
      "oneOf": [
        {
          "description": "body recipes",
          "$ref": "#/$defs/recipe-steps"
        },
        {
          "description": "previous body state cannot be recreated",
          "type": "null"
        }
      ]
    }
  },
  "anyOf": [
    { "required": ["h"] },
    { "required": ["b"] }
  ],
  "$defs": {
    "recipe-steps": {
      "type": "array",
      "items": {
        "oneOf": [
          {
            "description": "copy lines/fields, start to end inclusive",
            "type": "object",
            "properties": {
              "c": { "type": "array",
                "items": { "type": "integer", "minimum": 1 },
                "minItems": 2, "maxItems": 2
              }
            },
            "required": ["c"], "additionalProperties": false
          },
          {
            "description": "data lines/values to emit",
            "type": "object",
            "properties": {
              "d": { "type": "array",
                "items": { "type": "string" },
                "minItems": 1
              }
            },
            "required": ["d"], "additionalProperties": false
          }
        ]
      }
    }
  }
}
]]></artwork></figure>

<t>Note that the specification of JSON schemas is maintained by the JSON Schema
organisation, and the relevant specification document is linked to by the
$schema field in each JSON schema.</t>

<section anchor="header-recipes"><name>Header Recipes</name>

<t>A Header Recipe is an array of instructions ("recipes") applied to the specified
header fields with the given header field name. These recipes
are applied in order to the message which has been received
so as to recreate the message as it was before modifications were made.
Recipes MUST be provided for any relevant header field (see <xref target="ignoreheaders"/>
for header fields that are not relevant) that is changed; i.e. it is
not possible to indicate that the previous state of the header fields
cannot be recreated.</t>

<t>If there is no "h" field in the JSON object then there was no
modification to the header fields.</t>

<t>Matching of header field names is always done without regard to case
and there MUST NOT be JSON keys that differ only in case. Recipes
SHOULD NOT be specified for header fields that will not be signed
(see <xref target="ignoreheaders"/></t>

<t>If a header field name is not present in the JSON object then all
header fields with that header field name are to be retained.</t>

<t>If the recipe array for a header field name that is present in the
JSON object is empty then all instances of that header field are to
be removed to reinstate the previous state of the message.</t>

<t>Header fields are numbered "bottom up" (the opposite direction to
the body lines). That is to say, when walking the header fields
from the top of the message to end of the header fields then
the last header field instance
encountered with any particular header field name is numbered 1,
the header field (with the same header field name) above that is
numbered 2, and so on.</t>

<t>The header fields should be treated as
being unwrapped (in the normal <xref target="RFC5321"></xref> manner). That is, all
of the physical lines that form a single header field are
processed under the same logical number.</t>

<t>The recipes are processed in order and the resulting header
fields are emitted so that later header field will appear above
earlier header fields in the recreated message.</t>

<t>Each recipe step is a JSON object with exactly one key:</t>

<t>A "c" step has the form {"c": [start, end]}. The relevant header field
instances numbered from start to end inclusive, are to be emitted.
The start value of each "c" step MUST be in ascending order and
MUST be greater than the end value of all preceding "c" steps
for this header field name.</t>

<t>A "d" step has the form {"d": ["value1", "value2", ...]}. Each
string in the array is treated as a value to which the
relevant header field name and a colon is prepended and a CRLF
is appended and the resultant string is then emitted. Note that
the way in which hashes are calculated (see <xref target="computing-header-hash"/>)
means that no heed needs to be taken of wrapping
or the case of the header field name. The text strings MUST NOT
contain CR or LF characters. If a string is empty then the
CRLF will immediately follow the header field name and colon.</t>

</section>
<section anchor="body-recipes"><name>Body Recipes</name>

<t>A Body Recipe is an array of instructions applied to the message
body which can recreate the message as it was before modifications
were made.</t>

<t>If there is no "b" field in the JSON object then there was no
modification to the message body. Note that the JSON schema
requires either "h" or "b" to be present.</t>

<t>If the "b" field is null (there are no recipes) then the previous
state of the message body
cannot be recreated. Verifiers of the message may be able to
determine, by seeing which entity makes this declaration, that
this is acceptable to them because, for example, that entity
is providing a contractually arranged service.</t>

<t>Body lines are numbered "top down" (the opposite direction to
the header fields). The first line of the body (immediately after
the blank line that indicates that there are no more header fields)
is numbered 1.</t>

<t>The recipes are processed in order and the resulting body lines
fields are emitted so that later lines will appear below
earlier lines in the recreated message.</t>

<t>Each recipe step is a JSON object with exactly one key:</t>

<t>A "c" step has the form {"c": [start, end]}. The message body lines
from start to end, inclusive, are to be emitted. The start value of
each "c" step MUST be in ascending order and MUST be greater than the
end value of all preceding "c" steps.</t>

<t>A "d" step has the form {"d": ["line1", "line2", ...]}. Each
string in the array has a CRLF
appended and the resultant string is emitted. The text strings MUST NOT
contain CR or LF characters. If a string is empty then just
a CRLF is emitted.</t>

</section>
</section>
<section anchor="messagehashes"><name>Message Hash Values</name>

<t>A set of cryptographic "hashes" are used to record the current
message body and header fields. The hashes are placed into the
h= tag of a Message-Instance header field.</t>

<t>To provide for algorithmic dexterity more that one hash value, using a
different algorithm MAY be supplied in the same Message-Instance
header field.</t>

<t>Since Message-Instance header fields are ignored when calculating the
header hash value, the body hash and header hash may be calculated in
any convenient order.</t>

<section anchor="computing-body-hash"><name>Computing the Body Hash</name>

<t>The body of messages is treated as merely a string of octets. DKIM2
messages MAY be either in plain-text or in MIME format; no special
treatment is afforded to MIME content. Message attachments in MIME
format MUST be included in the content that is signed.</t>

<t>The DKIM2 body hash is calculated in the same manner as DKIM1's "simple"
scheme:</t>

<t>All empty lines at the end of the message body are ignored. An empty line
is a line of zero length after removal of the line terminator.  If there
is no body or no trailing CRLF on the message body, a CRLF is added. That
is "*CRLF" at the end of the body is converted to "CRLF".</t>

<t>No other changes are made to the body, which is then processed by the
relevant hash algorithm(s). The name of the hash and the hash value
(converted to base64 form) is then inserted into (Signers) or compared
to (Verifiers) the value of the "h=" tag of the Message-Instance header
field that is being created/verified. If multiple hashes are calculated
then multiple entries within the "h=" value will be inserted/compared.</t>

</section>
<section anchor="computing-header-hash"><name>Computing the Header Fields Hash</name>

<t>The header fields hash calculation done by a Signer MUST apply the
following steps in the order given. A Verifier will need to do the
equivalent steps in order to check that the hash they have received
is correct.</t>

<t><list style="symbols">
  <t>Ignore some header fields  <vspace blankLines='1'/>
When calculating the header field hash some header fields
are entirely ignored. See <xref target="ignoreheaders"/> for the list of header
field names that MUST be ignored.  <vspace blankLines='1'/>
When calculating the header field hash any "Message-Instance" or
"DKIM2-Signature" header fields MUST be ignored. These header
fields will be included in the hash value that will be signed
by a DKIM2-Signature header field and it simplifies implementations
if they are not included twice, especially when determining
whether all modifications to a message have been correctly declared.</t>
  <t>Convert all header field names (not the header field values) to
lowercase.  For example, convert "SUBJect: AbC" to "subject: AbC".</t>
  <t>Unfold all header field continuation lines as described in
<xref target="RFC5322"></xref>; in particular, lines with terminators embedded in
continued header field values (that is, CRLF sequences followed by
WSP) MUST be interpreted without the CRLF.  Implementations MUST
NOT remove the CRLF at the end of the header field value.</t>
  <t>Convert all sequences of one or more WSP characters to a single SP
character.  WSP characters here include those before and after a
line folding boundary.</t>
  <t>Delete all WSP characters at the end of each unfolded header field
value.</t>
  <t>Delete any WSP characters remaining before and after the colon
separating the header field name from the header field value.  The
colon separator MUST be retained.</t>
  <t>Place the header fields in alphabetical order by the header field
name.</t>
  <t>If there is more than one header with the same header field name
then the header fields are placed in the order in which they were
likely to have been placed into the message header, that is from
the last within the header upwards (the same ordering as is used
in the header recipes (see <xref target="header-recipes"/>).  <vspace blankLines='1'/>
It is sometimes suggested that some MTAs re-order
header fields after they receive an email. If an MTA does change the
order of header fields with the same header field name (and those
header fields will be included in the hash calculation) then it is their
responsibility to recover the original order
before verifying an existing signature or passing a previously signed
message to another MTA that may wish to do such verification.</t>
  <t>The hash(es) of the concatenated header fields are calculated.</t>
</list></t>

<t>The name of the hash and the hash value
(converted to base64 form) is then inserted into (Signers) or compared
to (Verifiers) the value of the "h=" tag of the Message-Instance header
field that is being created/verified. If multiple hashes are calculated
then multiple entries within the "h=" value will be inserted/compared.</t>

</section>
</section>
<section anchor="hfMessageInstance"><name>The Message-Instance Header Field</name>

<t>A Message-Instance header field documents the current contents of
the message and, in the case of a Reviser, records any relevant
changes that have been made to the incoming message.</t>

<t>The Message-Instance header field is a list of tag values as described
below. The m= and h= tags MUST be present. The r= tag is optional. Note
that the syntax is such that semi-colons will never occur within
tags or values, they only act as a separators.</t>

<t>The tag identifiers (before the = sign) MUST be treated as case
insignificant, the tag value (after the = sign) is case significant. The
tags may appear in any order, but MUST be only one of each kind. Unknown
tags, for extensions, MUST be ignored.</t>

<t>ABNF:</t>

<figure><artwork><![CDATA[
mi-field    = "Message-Instance:" mi-tag-list
mi-tag-list = *([FWS] mi-tag [FWS] ";" [FWS])
mi-tag      = mi-m-tag / mi-h-tag / mi-r-tag / x-tag
              ; x-tag is for extension
x-tag       = x-tag-name [FWS] "=" [FWS] [x-tag-value]
x-tag-name  = ALPHA *(ALPHA / DIGIT / "_")
x-tag-char  = %x21-3A / %x3C-7E
x-tag-value = x-tag-char *([FWS] x-tag-char)
]]></artwork></figure>

<section anchor="m-the-revision-number-of-the-message-instance-header-field"><name>m= the revision number of the Message-Instance header field</name>

<t>The Originator of a message uses the
value 1. Further Message-Instance header fields are added with a value one
more than the current highest numbered Message-Instance header field. Gaps
in the numbering MUST be treated as making the whole message impossible
to verify.</t>

<t>ABNF:</t>

<figure><artwork><![CDATA[
mi-m-tag    = %x6d [FWS] "=" [FWS] 1*DIGIT
]]></artwork></figure>

</section>
<section anchor="r-recipes-to-recreate-the-previous-instance-of-the-message"><name>r= recipes to recreate the previous instance of the message</name>

<t>The r= tag value is the base64 encoded version of the JSON object that
contains the recipes that allow the previous instance of the message
to be recreated (see <xref target="JSONrecipe"/>}.</t>

<t>ABNF:</t>

<figure><artwork><![CDATA[
mi-r-tag    = %x72 [FWS] "=" base64string
]]></artwork></figure>

</section>
<section anchor="h-the-hash-values-for-the-message"><name>h= the hash values for the message</name>

<t>The h= tag value contains the hash name, header hash value and body
hash value. Calculating the hash values is explained in <xref target="messagehashes"/>.</t>

<t>ABNF:</t>

<figure><artwork><![CDATA[
mi-h-tag    = %x68 [FWS] "=" hash-set *("," hash-set)
hash-set    = [FWS] hash-name [FWS] ":" header-hash ":" body-hash
hash-name   = "sha256" / x-hash-name
header-hash = base64string
body-hash   = base64string
x-hash-name = textstring ; for later expansion
]]></artwork></figure>

</section>
</section>
<section anchor="hfDKIM2signature"><name>The DKIM2-Signature Header Field</name>

<t>The signature of the email is stored in a DKIM2-Signature header
field.  This header field contains tag values that provide the
signature and key-fetching data.  Note that the syntax is such that
semi-colons will never occur within tags or values, they only act
as a separators.</t>

<t>The i=, m=, t=, d= and s= tags MUST be present. There MUST be
either an nd= tag or both mf= and rt= tags. The other tags are optional.</t>

<t>The tag identifiers (before the = sign) MUST be treated as case
insignificant, the tag value (after the = sign) is case significant. The
tags may appear in any order, but there MUST be only one of each kind.
Unknown tags, for extensions, MUST be ignored.</t>

<t>ABNF:</t>

<figure><artwork><![CDATA[
sig-field    = "DKIM2-Signature:" sig-tag-list
sig-tag-list = *([FWS] sig-tag [FWS] ";" [FWS])
sig-tag      = sig-i-tag / sig-m-tag / sig-t-tag / sig-mf-tag /
               sig-rt-tag / sig-nd-tag / sig-d-tag / sig-s-tag /
               sig-n-tag / sig-f-tag / x-tag
]]></artwork></figure>

<t>It will be noted that we have not included a version number.  Experience
from IMF onwards shows that it is essentially impossible to change
version numbers. If it becomes necessary to change DKIM2 in the sort
of incompatible way that a v=2 / v=3 version number would support,
it is expected that header fields will be labelled as DKIM3 instead.</t>

<section anchor="i-the-sequence-number-of-the-dkim2-signature-header-field"><name>i= the sequence number of the DKIM2-Signature header field</name>

<t>The Originator of a message uses the
value 1. Further DKIM2-Signature header fields are added with a value one
more than the current highest numbered DKIM2-Signature header field. Gaps
in the numbering MUST be treated as making the whole message unsigned.</t>

<t>ABNF:</t>

<figure><artwork><![CDATA[
sig-i-tag = %x69 [FWS] "=" [FWS] 1*DIGIT
]]></artwork></figure>

</section>
<section anchor="m-the-highest-numbered-message-instance-header-field"><name>m= the highest numbered Message-Instance header field</name>

<t>This value allows verifiers to determine which entity made a particular
revision to the message header fields or body.</t>

<t>ABNF:</t>

<figure><artwork><![CDATA[
sig-m-tag = %x6d [FWS] "=" [FWS] 1*DIGIT
]]></artwork></figure>

</section>
<section anchor="n-nonce-value"><name>n=  nonce value</name>

<t>This text value, if present, has a meaning to the creator of the signature
but MUST NOT be assumed to have any meaning to any other entity. It
MAY be used as an index into a database to assist in handling Delivery
Status Notifications or for any other purpose.</t>

<t>To discourage use of this tag field as an alternative to the use of more
appropriate header fields, the length of the string MUST NOT
exceed 64 characters and implementations SHOULD reject messages
where this limit has been ignored.</t>

<t>Note the value MUST be simple ASCII and MUST NOT contain semicolon.</t>

<t>ABNF:</t>

<figure><artwork><![CDATA[
sig-n-tag   = %x6e [FWS] "=" [FWS] nonce-value
nonce-value = *64(%x21-3A / %x3C-7E)
                  ; printable ASCII except semicolon, max 64 chars
]]></artwork></figure>

</section>
<section anchor="t-signature-timestamp"><name>t=  signature timestamp</name>

<t>The time that this header field was created. The format is the number of
seconds since 00:00:00 on January 1, 1970 in the UTC time zone.  The value
is expressed as an unsigned integer in decimal ASCII.  This value
is not constrained to fit into a 31- or 32-bit integer.</t>

<t>Implementations SHOULD be prepared to handle values up to at least
10^12 (until approximately AD 200,000; this fits into 40 bits).</t>

<t>Implementations MAY ignore signatures that have a timestamp in the future.
Implementations MAY ignore signatures that are more than 14 days old.</t>

<t>ABNF:</t>

<figure><artwork><![CDATA[
sig-t-tag    = %x74 [FWS] "=" [FWS] 1*DIGIT
]]></artwork></figure>

</section>
<section anchor="mf-the-mail-from-used-when-the-message-was-sent"><name>mf= the MAIL FROM used when the message was sent</name>

<t>DKIM2 records the <xref target="RFC5321"></xref> MAIL FROM value that was used when the message
was transmitted over an SMTP link from the signing MTA. Note that MAIL FROM
may be just "&lt;&gt;", for example for a Delivery Status Notification.</t>

<t>The value is recorded as the base64 encoding of the <xref target="RFC5321"></xref> reverse-path
because of the complex syntax of reverse-path values (which can include
characters which would confuse naive parsers of DKIM2-Signature header
fields). The angle brackets MUST be included, but any "Mail-parameters"
that were present after the reverse-path MUST NOT be included.</t>

<t>ABNF:</t>

<figure><artwork><![CDATA[
sig-mf-tag  = %x6d %x66 [FWS] "=" base64string
]]></artwork></figure>

</section>
<section anchor="rt-the-rcpt-to-values-used-when-the-message-was-sent"><name>rt= the RCPT TO value(s) used when the message was sent</name>

<t>DKIM2 records the <xref target="RFC5321"></xref> RCPT TO value(s) that were used when the message
was transmitted over an SMTP link from the signing MTA.</t>

<t>The value is recorded as the base64 encoding of the <xref target="RFC5321"></xref> Forward-path
because of the complex syntax of Forward-path values (which can include
characters which would confuse naive parsers of DKIM2-Signature header
fields). The angle brackets MUST be included, but any "Rcpt-parameters"
that were present after the Forward-path MUST NOT be included.</t>

<t>When a message is intended for more than one recipient then the RCPT
TO values provided MAY include all of the recipients so that a single
copy of the email MAY be sent to all of the recipients in a single SMTP
transaction. Alternatively, multiple copies of the email may be
generated so as to not immediately reveal who else received the email.</t>

<t>However, if "bcc:" recipients are involved then in order to
meet the requirements of <xref target="RFC5322"></xref> Section 3.6.3 each and every
bcc recipients MUST NOT be revealed to any other message recipient.</t>

<t>ABNF:</t>

<figure><artwork><![CDATA[
sig-rt-tag = %x72 %x74 [FWS] "=" base64string *("," base64string)
]]></artwork></figure>

</section>
<section anchor="nd-the-domain-that-will-appear-in-the-next-dkim2-signature-header-field"><name>nd=  the domain that will appear in the next DKIM2-Signature header field</name>

<t>This tag is used in order to provide a valid "chain of custody" when a
message is being forwarded from a different domain than the one to
which it arrived. The domain MUST be a valid DNS name under which a
DKIM2 key record is published.</t>

<t>The domain name in the nd= tag MUST exactly match the domain name of the
d= tag of the next DKIM2-Signature in sequence (i=) order.</t>

<t>Note that when an nd= tag is present both mf= and rt= MUST be omitted.
It is permissible to have a sequence of more than one
DKIM2-Signature header fields with an nd= tag, but this sequence
(in unbroken ascending numeric order of i= tags) MUST end with a
DKIM2-Signature that contains mf= and rt= tags.</t>

<t>ABNF:</t>

<figure><artwork><![CDATA[
sig-nd-tag   = %x6e %x64 [FWS] "=" [FWS] Domain
]]></artwork></figure>

</section>
<section anchor="d-the-domain-associated-with-this-signature"><name>d=  the domain associated with this signature.</name>

<t>This domain is used to form the query for the public key. The domain MUST be a valid DNS
name under which the DKIM2 key record is published.</t>

<t>The domain name in the d= tag MUST exactly match the rightmost labels of
the domain name of the mf= tag. That is to say, the domain name of the
mf= tag MUST either match the d= domain exactly or be a sub-domain
of the d= domain name.</t>

<t>When the mf= domain is empty ("&lt;&gt;"), as will be the case for Delivery
Status Notifications (DSNs), then no match is required.</t>

<t>ABNF:</t>

<figure><artwork><![CDATA[
sig-d-tag   = %x64 [FWS] "=" [FWS] Domain
]]></artwork></figure>

</section>
<section anchor="s-the-signature-values-for-the-message"><name>s= the signature value(s) for the message</name>

<t>The s= tag value contains the selector, signature algorithm name and
signature value. Calculating the value is explained in
<xref target="calculate-signature"/>.</t>

<t>The selector values subdivides the namespace for the domain being
used for signing.</t>

<t>The algorithm value is the one used to generate
the signature. Verifiers MUST support "RSA-SHA256" for which
the string "rsa-sha256" is used and "Ed25519-SHA256" for which the
string "ed25519-sha256" is used. See <xref target="algorithms"/> for a description
of these algorithms.</t>

<t>To provide for algorithmic dexterity more than one signature,
using different algorithms, MAY be supplied. Since the DNS lookup for
the public key will check that the k= algorithm value matches, a different
selector MUST necessarily be used for each signature.</t>

<t>ABNF:</t>

<figure><artwork><![CDATA[
sig-s-tag   = %x73 [FWS] "=" [FWS] sig-set *( "," sig-set )
sig-set     = selector [FWS] ":" [FWS] sig-name [FWS] ":" message-sig
sig-name    = "rsa-sha256" / "ed25519-sha256" / x-sig-name
x-sig-name  = textstring     ; for later extension
message-sig = base64string
]]></artwork></figure>

</section>
<section anchor="f-flags"><name>f=  flags</name>

<t>Flags serve two purposes; they either report what has been done to
the message by the system creating the DKIM2-Signature or they make
a request to systems that handle the mail thereafter. Flags are
separated by commas, and optional white-space allows systems to
add several flags without creating long lines.</t>

<t>If a flag value is not recognised it MUST be ignored.</t>

<t>The flag values that report things are:</t>

<t>"exploded": this message (identified by its unique header hash value (recorded
in the h= JSON object of the relevant Message-Instance) is being sent to more
than one email address. An
MTA which receives a message MAY use this information to help it distinguish
between malicious "DKIM replay" and legitimate activity performed by
mailing list. If this flag is not present in at least one DKIM2-Signature
header field then an MTA MAY assume that only one copy of a particular
message (identified by relevant cryptographic hash values) is intended
to exist;</t>

<t>The flags values that make requests are:</t>

<t>"donotexplode": this Signer requests that the message not be sent to more
than one recipient. A system that, by local policy, ignores this request
MUST NOT allow any of the copies it creates to be forwarded on to any
MTA outside its control.</t>

<t>"donotmodify": this Signer requests that the message not be modified from
the form in which it is sent. If this request is honored then the body
MUST NOT be changed in any way that alters the body hash and header fields
MUST NOT be removed or changed. It is permissible to add header fields
but a subsequent receiver SHOULD consider whether such header fields
have an impact on how the message will be viewed or responded to and
MAY reject the message if it has concerns. A  system that, by local
policy, ignores this request and makes other changes MUST NOT allow
the message to be forwarded on to any MTA outside its control.</t>

<t>"feedback": this Signer requests feedback about how this message is handled
during delivery and thereafter. This document does not describe what such
feedback might be or where it might be delivered. If this flag is absent
then feedback is explicitly not required.</t>

<t>"feedhere": this Signer requests that any feedback about how this message is
handled during delivery and thereafter is relayed via this hop. This flag
will be set by privacy-conscious Forwarders when a message has a "feedback"
flag set and the Forwarder does not wish the identity of systems to which
the message is forwarded to be reveal to the requestor of feedback.</t>

<t>ABNF:</t>

<figure><artwork><![CDATA[
sig-f-tag        = %x66 [FWS] "=" [FWS] sig-f-tag-data
                   *( [FWS] "," [FWS] sig-f-tag-data)
sig-f-tag-data   = "donotmodify" | "donotexplode" | "feedback" |
                   "feedhere" | "exploded" | x-sig-f-tag-data
x-sig-f-tag-data = textstring ; for later extension
]]></artwork></figure>

</section>
</section>
<section anchor="signer-actions"><name>Signer Actions</name>

<t>This section gives the actions that need to be undertaken by the signer
of a message. They may be done in any appropriate order.</t>

<section anchor="add-any-necessary-message-instance-header-fields"><name>Add any Necessary Message-Instance Header Fields</name>

<t>If a system is generating the initial form of a message or if
it is a Reviser that has made changes to the message body and/or
header fields then it MUST compute the body hash as described in
<xref target="computing-body-hash"/> and the hash of the header fields
as described in <xref target="computing-header-hash"/>.</t>

<t>If the message does not contain a Message-Instance header field then one
MUST be added.</t>

<t>If hashing the message body or relevant header fields does not
give the same hash values as those recorded in the highest version
(m=) Message-Instance header field then a new Message-Instance
header field MUST be added and if they are the same a new
Message-Instance header field SHOULD NOT be added.</t>

<t>A Message-Instance header field MUST contain "recipes" to be able to
recreate the message corresponding to the hash values in the
currently highest numbered Message-Instance header field, or a
null recipe to indicate that recreating the previous version
of the message will not be possible.</t>

<t>A system may add more than one Message-Instance header field if it
wishes to do so, but the DKIM2 design allows all modifications made by
any single system to be documented
in a single Message-Instance header field.</t>

<t>Note that the first (m=1) Message-Instance header field MAY
contain "recipes" if it is wished to record any changes made to a
message as it enters the DKIM2 ecosystem. All other Message-Instance
header fields SHOULD contain at least one "recipe".</t>

</section>
<section anchor="chain-of-custody"><name>Provide a "Chain of Custody" for the Message</name>

<t>The DKIM2-Signature header field contains the MAIL FROM
and RCPT TO values that will be used when the message is transmitted,
so these <xref target="RFC5321"></xref> "envelope" values MUST be available to (or
deducible by) a Signer.</t>

<t>The receiver of a message will check for an exact match (including
the local parts of the email addresses) between the MAIL FROM / RCPT TO
<xref target="RFC5321"></xref> protocol values and the mf= and rt= values in the highest numbered
(most recent) DKIM2-Signature header field. It is acceptable for there to
be more RCPT TO email addresses recorded in rt= than are actually used in
the SMTP conversation, but any RCPT TO value which is used MUST be present.</t>

<t>Verifiers will check for a relaxed domain match (see <xref target="relaxed-domain-match"/>)
between the signing domain (d=) and the domain in the MAIL FROM value.</t>

<t>When the message being signed already has a DKIM2-Signature header field
(i.e. it has already been transmitted at least once) then a valid
"chain of custody" MUST be apparent when all of the DKIM2-Signature header fields
are considered. This "chain of custody" contributes to the way in
which DKIM2 tackles "DKIM replay" attacks.</t>

<t>If an MTA does not change anything in the message which would require
a new Message-Instance header field and it is going to send it onwards
to a system that be able to verify the existing message (that is no
changes are made to the MAIL FROM and RCPT TO values) and there is no
other reason to add a DKIM2-Signature header field then the MTA MAY
choose not to add one. This means that an essentially transparent
SMTP forwarding system need not be made "DKIM2 aware".</t>

</section>
<section anchor="imaginaryhops"><name>"Chain of Custody" for Imaginary Hops</name>

<t>In any situation where a message will be forwarded in such a way that the
mf= on the outgoing message is such that the "chain of custody"
would be broken then the Signer MUST ensure this is not the case.</t>

<t>One way of doing this would be to generate an extra DKIM2-Signature
header field that causes values to match, i.e. a record is fabricated
that documents the mail being passed from one domain to another with
appropriate "mf=" and "rt=" tag values which document the imaginary
transfer of the email from one domain to the next.</t>

<t>Alternatively the "nd=" tag may be used. When present the next higher
sequence numbered DKIM2-Signature header field MUST be signed by the
specified domain. However, since there are no mf= or rt= tag values
there is no need to provide imaginary values for the imaginary "hop"
between the domain used for receiving the message and the domain used to
forward it.</t>

<t>It will be noted that the creation of an extra DKIM2-Signature header field
(whether the nd= scheme is used or not) will require the Signer to have access
to a DKIM2 private key associated with a domain in the RCPT TO entry of
the message as it arrived.</t>

<t>Access to this private key is
often achieved by the Signer creating the private key and never sharing it.
One of two approaches is then taken to publishing the public key.
The first is to provide the public key (and selector value) to the domain owner
who creates an appropriate DNS entry. The alternative is for the Signer 
to create a public
key DNS entry within a part of the DNS that they control and the domain owner
publishes a CNAME pointing at this.</t>

<t>The general expectation is that signatures with an nd= tag have been
applied by the same system as the next DKIM2-Signature field
without an nd= tag. However, as a special case (where arrangements
have been put in place to cover the situation) a message with an
nd= tag in the highest numbered DKIM2-Signature header field may
be sent over an SMTP connection. The receiving system will not
be able to validate the MAIL FROM and RCPT TO parameters and MUST
rely on out-of-band information to deem the message acceptable.
The system MUST then provide a DKIM2-Signature header field with
a d= tag that exactly matches the nd= tag. Adding such a header
field will signal that the break in the chain of custody is intentional.</t>

</section>
<section anchor="relaxed-domain-match"><name>The Relaxed Domain Match Algorithm</name>

<t>To assist in addressing the "DKIM replay" problem DKIM2 provides a
"chain of custody" for every message. This is established by checking
that the MAIL FROM value recorded in every DKIM2-Signature header field
(except of course the i=1 instance) can be matched with a RCPT TO value
of the next lower numbered DKIM2-Signature header field.</t>

<t>It is also necessary to check DKIM2-Signature header fields for a match
between the signing domain (specified in the d= tag) and the MAIL FROM
domain.</t>

<t>To allow systems to use existing "bounce-handling" schemes with special
subdomains in their MAIL FROM values a "relaxed" approach is taken
to the matches between these values.</t>

<t><list style="symbols">
  <t>Only the domain part of the MAIL FROM and RCPT TO values is used
for these matches The local part (and the @) are ignored.</t>
  <t>If there is not an exact match between the domain names then labels
are removed, one by one from the left hand side of the MAIL
FROM domain name and the comparison is repeated.</t>
  <t>If no labels remain then there is no match.</t>
</list></t>

</section>
<section anchor="signer_privatekey"><name>Select a Private Key and Corresponding Selector Value</name>

<t>This specification does not define the basis by which a Signer should
choose which private key and selector value to use -- this will be a
matter of administrative convenience.  Distribution and management of private
keys is also outside the scope of this document.</t>

</section>
<section anchor="calculate-signature"><name>Calculate a Signature Value</name>

<t>A Signer calculates a signature solely over the Message-Instance and
DKIM2-Signature header fields of the message. The hashes of
the body and other header fields are covered by the hashes in
the highest version (m=) Message-Instance header field and hence
the signature will in practice be signing the message as a whole.</t>

<t>Most cryptographic schemes proceed by first calculating a hash value
and then signing the hash value, but the DKIM2-Signature header field
only provides the final signature value. This means that there
is no difficulty if the hash value is inordinately long, or is
not emitted by the cryptographic routine being used.</t>

<t>The signature algorithm MUST apply the following steps
in the order given (which are not quite the same as the steps
undertaken in calculating header hashes).</t>

<t><list style="symbols">
  <t>Convert all relevant header field names (not the header field values) to
lowercase.  For example, convert "DKIM2-signature" to "dkim2-signature".</t>
  <t>Unfold all header field continuation lines as described in
<xref target="RFC5322"></xref>; in particular, lines with terminators embedded in
continued header field values (that is, CRLF sequences followed by
WSP) MUST be interpreted without the CRLF.  Implementations MUST
NOT remove the CRLF at the end of the header field value.</t>
  <t>Delete all WSP characters. This means all WSP characters before and
after the colon separating the header field name from the header
field value, all WSP characters within the unfolded header field
value and all trailing WSP characters before the CRLF. The colon
separator and the CRLF MUST be retained.</t>
  <t>Place the header fields in order. First come the Message-Instance
header fields in ascending instance (m=) order. Second are the
DKIM2-Signature header fields in ascending sequence (i=) order.
Last of all is an incomplete DKIM2-Signature header field (the
one that this system is creating) with all tags present except
that the signature value(s) within the (s=) value are set to
the null string (""). The incomplete header field MUST be
unfolded, MUST have a trailing CRLF and MUST have spaces removed
in just the same way as the
complete header fields being processed.</t>
  <t>The concatenated header fields are then fed to the signature
algorithm(s). Once all the values are available the null 
signature value strings
are replaced by the base64 values of the signatures.</t>
</list></t>

</section>
</section>
<section anchor="verification-requirements"><name>Verification Requirements</name>

<t>The details of verification appear in <xref target="verifier_actions"/> below.
This section considers when verification should be performed and
how thorough it needs to be.</t>

<section anchor="check-most-recent-signature-and-hashes-for-the-message"><name>Check Most Recent Signature and Hashes for the Message</name>

<t>A Verifier SHOULD check the validity of the most recently applied
(highest numbered i= value) DKIM2-Signature header field
and the associated (m=) Message-Instance before accepting an email.</t>

<t>If these checks
do not pass then a Delivery Status Notification (DSN) for the email MUST
NOT be generated thereafter -- hence the best strategy, if the email
is not wanted, is to reject it (with a 5xx error code) whilst the
relevant SMTP conversation is still ongoing. If the check gives
a TEMPFAIL result then a 4xx error code SHOULD be used to allow the
sending MTA to understand the situation.</t>

<t>If the checks do pass and it is later determined that the email
is unacceptable for any reason then a DSN MAY be created and
passed to the system that delivered the email. The details of
this procedure appear in <xref target="bounce"/>.</t>

</section>
<section anchor="checking-the-message-instance-header-fields"><name>Checking the Message-Instance Header Fields</name>

<t>If the message has been modified since its original creation then
the Message-Instance header fields will enable a Verifier to determine
whether or not all the changes made are correctly recorded
by using the "recipes" to construct each preceding version
of the message.</t>

<t>Note that if it is only the first form of the message is of
interest then all the "recipes" can be applied in turn and
only one hash value checked -- the correctness of the
intermediate hash values are not relevant to this assessment.</t>

</section>
<section anchor="checking-the-dkim2-signature-header-fields"><name>Checking the DKIM2-Signature Header Fields</name>

<t>However, in order to check the chain of custody, to assess
whether the message has been exploded, to pick out
"feedback" requests to be honoured or to assign reputation to
Revisers then all of the DKIM2-Signature header fields
will have to checked for validity. The TBA document explores
these issues in more detail.</t>

</section>
<section anchor="verifier_interpret"><name>Interpret Results/Apply Local Policy</name>

<t>It is beyond the scope of this specification to describe what actions
the recipient of an email performs, but mail carrying valid DKIM2
signatures gives the recipient opportunities that unauthenticated
email would not.  Specifically, an authenticated email provides
predictable information by which other decisions can reliably be
managed, such as trust and reputation.  Conversely, it is hard
to assign trust or reputation to unauthenticated email.</t>

<t>If an MTA wishes to reject messages where signatures are missing
or do not verify, the handling MTA
SHOULD use a 550/5.7.x reply code.</t>

<t>Where the Verifier is integrated within the MTA and it is not
possible to fetch the public key, perhaps because the key server is
not available, a temporary failure message MAY be generated using a
451/4.7.5 reply code.</t>

<t>Temporary failures such as inability to access the key server or
other external service are the only conditions that SHOULD use a 4xx
SMTP reply code.  In particular, cryptographic signature verification
failures MUST NOT provoke 4xx SMTP replies.</t>

</section>
</section>
<section anchor="verifier_actions"><name>Verifier Actions</name>

<t>This section discusses the detail of the actions taken by a
Verifier. In essence
this will involve repeating all the actions taken by a Signer to
produce a Message-Instance or DKIM2-Signature header field. To
avoid a lot of repetition these actions will not be spelled out
in detail. Once a hash value has been calculated it is then
compared with the value reported by the Signer, or the Signer's
public key is used to determine whether a signature that has
been provided is correct.</t>

<t>When a Verifier is determining whether a particular DKIM2-Signature
header field it MUST consider the state of the message when that
header field was added to the message. That means it MUST first apply
all relevant recipes to reconstruct the body and header fields and it
MUST ignore any Message-Instance and DKIM2-Signature fields that
were added after that point.</t>

<section anchor="output-states"><name>Output States</name>

<t>For compatibility with the Authentication-Results header field defined
in <xref target="RFC8601"></xref> a verification will result in one of four states:</t>

<t>PASS:  The message was successfully verified.</t>

<t>FAIL:  The message could be verified but a hash or signature was not
       correct.</t>

<t>PERMERROR:  The message could not be verified due to some error that
      is unrecoverable, such as a required header field being absent
      or malformed.</t>

<t>TEMPERROR:  The message could not be verified due a temporary
      inability to retrieve a public key. A later attempt may
      produce a different.</t>

<t>A Verifier MAY cease verifying once a single failure is detected.</t>

<t>Verifiers wishing to communicate the results of verification to other
parts of the mail system may do so in whatever manner they see fit. If
they wish to provide a human-readable string to describe a failure
to verify (any state except PASS) then in order to provide the
maximum possible assistance to senders they SHOULD use the text
strings specified in this document. These human-readable messages
are described with m=<spanx style="verb">&lt;x&gt;</spanx> or tag=<spanx style="verb">&lt;y&gt;</spanx> placeholders, the <spanx style="verb">&lt;x&gt;</spanx> and <spanx style="verb">&lt;y&gt;</spanx> MUST
be replaced with the relevant ordinal or tag name (without the &lt; and
&gt; characters). Similarly <spanx style="verb">&lt;value&gt;</spanx> MUST be replaced by a relevant
string for the particular message.</t>

<t>If the verification is being performed during an SMTP protocol
conversation the human-readable string SHOULD be part of the
5xx or 4xx response string.</t>

<t>If the results of the verification are being communicated in a
Delivery Status Notification message (<xref target="RFC3462"/>) the
human-readable string should be included.</t>

<t>If, by local policy, a system wishes to accept a message which
has failed authentication it might choose to add an email header
field to the message before passing it on.  Any such header field
SHOULD include the human-readable string and 
SHOULD be inserted before any existing DKIM2-Signature or pre-existing
authentication status header fields in the header field block.  The
Authentication-Results: header field (<xref target="RFC8601"></xref>) MAY be used for this
purpose. It should be noted that any "Authentication-Results" header
field does not count as a modification to the email if any further
DKIM2-Signature header fields are to be generated.</t>

</section>
<section anchor="ensure-that-the-dkim2-header-fields-are-valid"><name>Ensure that the DKIM2 Header Fields are Valid</name>

<t>Verifiers MUST meticulously validate the format and values of all
relevant Message-Instance and DKIM2-Signature header fields. It MUST
also ensure that all required instances of these header fields are
present and that all required tags are present and tags that
cannot appear together do not do so. Recall however
that unknown tags MUST be ignored.</t>

<t>As a special case, there MUST NOT be a Message-Instance field
with a higher m= value than occurs in any DKIM2-Signature field.</t>

<t>Possible errors:</t>

<figure><artwork><![CDATA[
PERMERROR Message-Instance m=<x> missing
PERMERROR Message-Instance m=<x> syntax error
PERMERROR Message-Instance m=<x> tag=<y> missing
PERMERROR Message-Instance m=<x> is not signed
PERMERROR DKIM2-Signature i=<x> missing
PERMERROR DKIM2-Signature i=<x> syntax error
PERMERROR DKIM2-Signature i=<x> tag=<y> missing
PERMERROR DKIM2-Signature i=<x> tag=<y> was unexpected
]]></artwork></figure>

</section>
<section anchor="check-the-timestamps"><name>Check the Timestamps</name>

<t>Verifiers SHOULD return a failure if it is more than 14 days since the
timestamp recorded in the "t=" tag of any DKIM2-Signature header field.</t>

<t>Possible errors:</t>

<figure><artwork><![CDATA[
PERMERROR DKIM2-Signature i=<x> signature expired
]]></artwork></figure>

</section>
<section anchor="check-the-chain-of-custody"><name>Check the Chain-of-Custody</name>

<t>As explained in <xref target="chain-of-custody"/> a Verifier MUST check for an exact
match between the MAIL FROM and RCPT TO parameters used when delivering
a message and the values found in the mf= and rt= tags of the highest
numbered DKIM2-Signature header field. There may be extra values
in the rt= value, but all RCPT TO values actually used for
delivery MUST be present.</t>

<t>The values of domains MUST BE put into lower-case before doing these
checks. As is usual in email protocols the case of the local part of
an email address is assumed to matter. Note that these checks MUST NOT
use the relaxed domain match algorithm.</t>

<t>A Verifier SHOULD check that there is a relaxed domain match
(see {relaxed-domain-match}) between the signing domain of the
most recently applied DKIM2-Signature header field and the
mf= value in that header field.</t>

<t>If an nd= tag has been used instead of mf= and rt= tags then a
Verifier MUST ensure that there is an exact match with the d=
value in the next DKIM2-Signature field in sequence number order.</t>

<t>Verifiers SHOULD ensure that there are out-of-band arrangements
in place to assess message validity when the highest numbered
DKIM2-Signature header field contains an nd= tag.</t>

<t>Possible errors:</t>

<figure><artwork><![CDATA[
PERMERROR: DKIM2-Signature i=<x> MAIL FROM <value> did not match
PERMERROR: DKIM2-Signature i=<x> RCPT TO <value> did not match
PERMERROR: DKIM2-Signature i=<x> MAIL FROM and d= do not match
PERMERROR: DKIM2-Signature i=<x> MAIL nd= does not match
PERMERROR: DKIM2-Signature i=<x> unexpected nd= tag
]]></artwork></figure>

</section>
<section anchor="fetch-the-public-key"><name>Fetch the Public Key</name>

<t>The public keys of all the signatures in DKIM2-Signature fields are
needed to complete the verification process. Details of key management and
representation are described in <xref target="key_management"/> and <xref target="DKIMKEYS"></xref>.
The Verifier MUST validate the key record and MUST NOT use any public
key records that are malformed.</t>

<t>Note that DNS timeouts MUST be reported as TEMPERROR but a DNS
result that indicates the key is absent MUST be reported as a
PERMERROR. Additionally, as <xref target="DKIMKEYS"></xref> makes clear, if more than
one record is returned this is an error. The human-readable error
message SHOULD provide the selector value so that it is clear which
key has caused a problem.</t>

<t>Note that <xref target="DKIMKEYS"></xref> has retired the h= field and DKIM2 implementations
MUST ignore this tag if it is present.</t>

<t>Possible errors:</t>

<figure><artwork><![CDATA[
TEMPERROR: DKIM2-Signature i=<x> public key <value> could not be fetched
PERMERROR: DKIM2-Signature i=<x> public key <value> does not exist
PERMERROR: DKIM2-Signature i=<x> public key <value> has multiple records
PERMERROR: DKIM2-Signature i=<x> public key <value> has a syntax error
PERMERROR: DKIM2-Signature i=<x> public key <value> algorithm mismatch
PERMERROR: DKIM2-Signature i=<x> public key <value> has been revoked
]]></artwork></figure>

</section>
<section anchor="perform-the-signature-verification-calculation"><name>Perform the Signature Verification Calculation</name>

<t>Verifying a signature consists of actions semantically equivalent to the
following steps:</t>

<t><list style="numbers" type="1">
  <t>Prepare a canonicalized version of the Message-Instance and DKIM2-Signature
header fields as described in <xref target="calculate-signature"/>. The signature value(s)
themselves will need to be removed to correspond with what was actually
signed. Note that this canonicalized version does not actually replace
the original content.</t>
  <t>Use the relevant public key value(s) to check the signature(s).</t>
  <t>If there is more than one signature provided then they MUST all be
checked if the Verifier is able to do so. If any signature fails then
an error SHOULD be reported. If all signatures that can be checked fail
then PERMFAIL MUST be reported.</t>
  <t>If some signatures fail and other pass then any error that is
reported should provide that information (e.g. PERMFAIL "rsa-sha256
signature passed, ed25519-sha256 signature failed").</t>
</list></t>

<t>The reasoning for requiring that all signatures pass is that if a signature
scheme has recently become deprecated because it is known to be cryptographically
flawed then Signers will use a second (unbroken) signature scheme. However, such
a Signer may still provide the other signature for the benefit of Verifiers
that have yet to upgrade -- reasoning perhaps that attacks are too expensive
to be a very significant security issue. A Verifier that determines that
one signature passes whilst the other fails may well be in a position to
prevent an attack.</t>

<t>Possible errors:</t>

<figure><artwork><![CDATA[
FAIL: DKIM2-Signature i=<x> public key <value> incorrect signature
]]></artwork></figure>

</section>
<section anchor="validating-body-and-header-hashes"><name>Validating Body and Header Hashes</name>

<t>Verifying a hash value requires a Verifier to repeat the hash calculation
performed by the Signer as set out in <xref target="computing-body-hash"/>
and <xref target="computing-body-hash"/>. The values can then be directly compared.</t>

<t>Since there may be more than one hash algorithm given the human-readable
error message SHOULD indicate which algorithm's result failed to match.</t>

<t>Possible errors:</t>

<figure><artwork><![CDATA[
FAIL: Message Instance m=<x> header hash <value> mismatch
FAIL: Message Instance m=<x> body hash <value> mismatch
]]></artwork></figure>

</section>
<section anchor="check-if-donotmodify-and-donotexplode-requests-were-honored"><name>Check if donotmodify and donotexplode Requests Were Honored</name>

<t>If a verifier receives a message with a nonotmodify request and a later
hop has altered the message body or removed or altered header fields
then the message SHOULD be rejected.</t>

<t>If a verifier receives a message with a donotexplode request and
a later hop has indicated that it has exploded the message then
the message SHOULD be rejected.</t>

<t>Possible errors:</t>

<figure><artwork><![CDATA[
FAIL: Message has been modified despite a donotmodify request
FAIL: Message has been exploded despite a donotexplode request
]]></artwork></figure>

</section>
</section>
<section anchor="bounce"><name>Delivery Status Notifications in the DKIM2 Ecosystem</name>

<t>In the DKIM2 ecosystem, when a message cannot be delivered then
this is reported to the sending machine by means of an <xref target="RFC5321"></xref>
return code or, if the SMTP session has completed, by generating
a Delivery Status Notification (DSN), as defined in <xref target="RFC3462"></xref>.</t>

<t>A DSN MUST be addressed to the MTA that sent the message. This
prevents "backscatter" by passing failures back along the chain
of MTAs that were in involved in passing the message forwards. This
is achieved by using the mf= tag from the highest numbered
DKIM2-Signature field. If this field is null ("mf=&lt;&gt;") then a DSN
MUST NOT be sent.</t>

<section anchor="dsn-contents"><name>DSN Contents</name>

<t>As set out in <xref target="RFC3462"></xref>, a DSN has a top-level MIME part of
type <spanx style="verb">multipart/report</spanx>.</t>

<t>A valid DSN generated by a DKIM2 system MUST always contain three
sections, the human-readable text, the machine readable status (in a
message/delivery-status MIME part and either a MIME part of type
<spanx style="verb">message/rfc822</spanx> that holds the original message exactly as it was
submitted by the sending system or `text/rfc822-headers' which has
just the header fields of that message.</t>

<t>All relevant DKIM2-Signature header fields (and Message-Instance
header fields if the message body is supplied) MUST verify.</t>

<t>The DSN itself MUST have appropriate Message-Instance and
DKIM2-Signature fields, noting that the MAIL FROM to be used
will be null ("&lt;&gt;").</t>

<section anchor="dsn-propagation"><name>DSN Propagation</name>

<t>A Forwarder which receives a DSN MAY propagate this
DSN to the MAIL FROM address used to deliver the message to it
(which can be found in the relevant DKIM2-Signature header field).</t>

<t>The DSN MUST be rebuilt so that the message (or just the message
header fields) are placed into the DSN to reflect the state the
message was in when it was forwarded. This means that the
DKIM2-Signature header field that was added MUST be removed.</t>

<t>Additionally, if the
message was modified by the Forwarder on the outward journey
those modifications must be undone and the Message-Instance
header field documenting those changes MUST be removed.</t>

<t>If it is impossible to regenerate the body of the message, because
it was changed on the outgoing path and a "null recipe" means
that the previous version cannot be reconstructed then the
body MUST be removed from the third part of the DSN and
a text/rfc822-headers MIME part must be supplied.</t>

<t>Where appropriate the reason for the delivery failure (as
recorded in the first part of the DSN) should be rewritten
to remove destination specific information.</t>

<t>The resultant DSN is sent to the
MAIL FROM address from the now highest numbered DKIM2-Signature
header field. The DSN itself MUST have only one DKIM2-Signature
field and only one Message-Instance header : i.e. it is a new
message.</t>

<t>Following these procedures will ensure that limited details of
where the message was forwarded to will be revealed to
the previous hop.</t>

</section>
<section anchor="authentication-of-inbound-dsns"><name>Authentication of Inbound DSNs</name>

<t>When a system receives a DKIM2 signed DSN, and the
included original message is also DKIM2 signed, it SHOULD
verify that this message (or just the header fields if the body
is not present) has not been altered.</t>

<t>This means:</t>

<t><list style="numbers" type="1">
  <t>The DSN's DKIM2-Signature will have a signing domain that is
aligned with the recipient of the message that is being returned.
The recipient's address is located in the rt= tag of the
last (highest i= tag) DKIM2-Signature in the returned message.</t>
  <t>The last (highest <spanx style="verb">i=</spanx> tag) DKIM2-Signature header field of the
returned message will be one that was generated by the system
receiving the DSN, determined by examining the
d= and mf= tags of that DKIM2-Signature header field.</t>
  <t>The header fields of the embedded message (in the message/rfc822
MIME part) can be verified by checking the header hash values in
the highest numbered Message-Instance header field. If the message
body is present then that can be verified by inspecting the body
hash value in the highest numbered Message-Instance header field.</t>
</list></t>

<t>If the verification fails then the DSN MUST NOT be propagated
any further. If verification has been performed prior to
accepting the DSN from the sender the DSN SHOULD be rejected
with a 550/5.7.x return code. If the verification cannot be completed
because of a temporary issue (with DNS lookups) then a 4xx
return code should be used.</t>

</section>
</section>
</section>
<section anchor="signer_normalize"><name>Preventing Transport Conversions</name>

<t>DKIM2's design is predicated on valid input.</t>

<t>In order to be signed a message will need to be in "network normal" format
(text is ASCII encoded, lines are separated with CRLF characters, etc.).</t>

<t>A message that is not compliant with <xref target="RFC5322"></xref>, <xref target="RFC2045"></xref>, <xref target="RFC2047"></xref>
and other relevant message format standards can be subject to attempts
by intermediaries to correct or interpret such content.  See Section 8
of <xref target="RFC6409"></xref> for examples of changes that are commonly made.  Such
"corrections" may invalidate DKIM2 signatures or have other undesirable
effects, including some that involve changes to the way a message is
presented to an end user.</t>

<t>When calculating the hash on messages that will be transmitted using
base64 or quoted-printable encoding, Signers MUST compute the hash
after the encoding.  Likewise, the Verifier MUST incorporate the
values into the hash before decoding the base64 or quoted-printable
text.  However, the hash MUST be computed before transport-level
encodings such as SMTP "dot-stuffing" (the modification of lines
beginning with a "." to avoid confusion with the SMTP end-of-message
marker, as specified in <xref target="RFC5321"></xref>).</t>

<t>Further, if the message contains local encoding that will be modified before transmission,
that modification to canonical <xref target="RFC5322"></xref> form MUST be done before signing.
In particular, bare CR or LF characters (used by some systems as a local line
separator convention) MUST be converted to the SMTP-standard CRLF
sequence before the message is signed.  Any conversion of this sort
SHOULD be applied to the message actually sent to the recipient(s),
not just to the version presented to the signing algorithm.</t>

<t>More generally, the Signer MUST sign the message as it is expected to
be received by the Verifier rather than in some local or internal form.</t>

</section>
<section anchor="eai-rfc6530-considerations-for-dkim2"><name>EAI (<xref target="RFC6530"></xref>) Considerations for DKIM2</name>

<t>TBA</t>

</section>
<section anchor="iana-considerations"><name>IANA Considerations</name>

<t>TBA</t>

</section>
<section anchor="security-considerations"><name>Security Considerations</name>

<t>TBA</t>

</section>
<section anchor="changes-from-earlier-versions"><name>Changes from Earlier Versions</name>

<t>draft-ietf-dkim-dkim2-spec-04</t>

<t>Provided summary of unsigned header fields.</t>

<t>Added text for situation when the highest DKIM2-Signature field
of a message has an nd= tag.</t>

<t>Added text to clarify checking of Message-Instance in a DSN.</t>

<t>draft-ietf-dkim-dkim2-spec-03</t>

<t>Move list of ignored header fields into its own section.
Added the experimental Delivered-To: header field to the list.</t>

<t>Remove possibility of a null recipe for header field changes.</t>

<t>Add nd= tag as an alternative to mf= rt= for imaginary hops.</t>

<t>Change DSN propagation rules so that a DSN always contains
the message headers up to the point at which the DSN creator
saw the message on the outward journey.</t>

<t>"feedhere" flag added.</t>

<t>draft-ietf-dkim-dkim2-spec-02</t>

<t>Made explicit that base64strings must be padded with zero bits.</t>

<t>Fixed header field description in JSON to be single string. and moved
the removed info into the textual discussion. Removed the z body recipe
since DSNs do not actually need this.</t>

<t>Added text to emphasise that semi-colons are (easy to parse) separators
in Message-Instance and DKIM2-Signature. Also fixed the syntax for
extension tags.</t>

<t>Added Authentication-Results to the list of headers that are
excluded from being signed.</t>

<t>Added text about what donotmodify means and added text to the
verification section about this and the donotexplode flag.</t>

<t>draft-ietf-dkim-dkim2-spec-01</t>

<t>Additions to terminology. Improved ABNF. Removed definition of tag-list
and placed relevant text in the two header field definitions. Untangled 
the description of what needs to be verified from the description of how
to verify and provided a list of human-readable strings to generate for
errors.</t>

<t>draft-ietf-dkim-dkim2-spec-00</t>

<t>Removed JSON for hashes, signatures and SMTP parameters. Provided
valid JSON for recipes and added "z" for truncated body.
Changed algorithm names for signing. Simplified the canonicalisation
performed for the header fields signed by DKIM2-Signature.
Changed v= to m= for message instance numbering.</t>

<t>General tidying up of specifying tag=value specifications and
associated ABNF. Various other fixes for issues flagged in WG.</t>

<t>[[This section to be removed by RFC Editor]]</t>

</section>


  </middle>

  <back>


<references title='References' anchor="sec-combined-references">

    <references title='Normative References' anchor="sec-normative-references">



<reference anchor="RFC1034">
  <front>
    <title>Domain names - concepts and facilities</title>
    <author fullname="P. Mockapetris" initials="P." surname="Mockapetris"/>
    <date month="November" year="1987"/>
    <abstract>
      <t>This RFC is the revised basic definition of The Domain Name System. It obsoletes RFC-882. This memo describes the domain style names and their used for host address look up and electronic mail forwarding. It discusses the clients and servers in the domain name system and the protocol used between them.</t>
    </abstract>
  </front>
  <seriesInfo name="STD" value="13"/>
  <seriesInfo name="RFC" value="1034"/>
  <seriesInfo name="DOI" value="10.17487/RFC1034"/>
</reference>
<reference anchor="RFC2045">
  <front>
    <title>Multipurpose Internet Mail Extensions (MIME) Part One: Format of Internet Message Bodies</title>
    <author fullname="N. Freed" initials="N." surname="Freed"/>
    <author fullname="N. Borenstein" initials="N." surname="Borenstein"/>
    <date month="November" year="1996"/>
    <abstract>
      <t>This initial document specifies the various headers used to describe the structure of MIME messages. [STANDARDS-TRACK]</t>
    </abstract>
  </front>
  <seriesInfo name="RFC" value="2045"/>
  <seriesInfo name="DOI" value="10.17487/RFC2045"/>
</reference>
<reference anchor="RFC2047">
  <front>
    <title>MIME (Multipurpose Internet Mail Extensions) Part Three: Message Header Extensions for Non-ASCII Text</title>
    <author fullname="K. Moore" initials="K." surname="Moore"/>
    <date month="November" year="1996"/>
    <abstract>
      <t>This particular document is the third document in the series. It describes extensions to RFC 822 to allow non-US-ASCII text data in Internet mail header fields. [STANDARDS-TRACK]</t>
    </abstract>
  </front>
  <seriesInfo name="RFC" value="2047"/>
  <seriesInfo name="DOI" value="10.17487/RFC2047"/>
</reference>
<reference anchor="RFC2119">
  <front>
    <title>Key words for use in RFCs to Indicate Requirement Levels</title>
    <author fullname="S. Bradner" initials="S." surname="Bradner"/>
    <date month="March" year="1997"/>
    <abstract>
      <t>In many standards track documents several words are used to signify the requirements in the specification. These words are often capitalized. This document defines these words as they should be interpreted in IETF documents. This document specifies an Internet Best Current Practices for the Internet Community, and requests discussion and suggestions for improvements.</t>
    </abstract>
  </front>
  <seriesInfo name="BCP" value="14"/>
  <seriesInfo name="RFC" value="2119"/>
  <seriesInfo name="DOI" value="10.17487/RFC2119"/>
</reference>
<reference anchor="RFC3462">
  <front>
    <title>The Multipart/Report Content Type for the Reporting of Mail System Administrative Messages</title>
    <author fullname="G. Vaudreuil" initials="G." surname="Vaudreuil"/>
    <date month="January" year="2003"/>
    <abstract>
      <t>The Multipart/Report Multipurpose Internet Mail Extensions (MIME) content-type is a general "family" or "container" type for electronic mail reports of any kind. Although this memo defines only the use of the Multipart/Report content-type with respect to delivery status reports, mail processing programs will benefit if a single content-type is used to for all kinds of reports. This document is part of a four document set describing the delivery status report service. This collection includes the Simple Mail Transfer Protocol (SMTP) extensions to request delivery status reports, a MIME content for the reporting of delivery reports, an enumeration of extended status codes, and a multipart container for the delivery report, the original message, and a human-friendly summary of the failure. [STANDARDS-TRACK]</t>
    </abstract>
  </front>
  <seriesInfo name="RFC" value="3462"/>
  <seriesInfo name="DOI" value="10.17487/RFC3462"/>
</reference>
<reference anchor="RFC4648">
  <front>
    <title>The Base16, Base32, and Base64 Data Encodings</title>
    <author fullname="S. Josefsson" initials="S." surname="Josefsson"/>
    <date month="October" year="2006"/>
    <abstract>
      <t>This document describes the commonly used base 64, base 32, and base 16 encoding schemes. It also discusses the use of line-feeds in encoded data, use of padding in encoded data, use of non-alphabet characters in encoded data, use of different encoding alphabets, and canonical encodings. [STANDARDS-TRACK]</t>
    </abstract>
  </front>
  <seriesInfo name="RFC" value="4648"/>
  <seriesInfo name="DOI" value="10.17487/RFC4648"/>
</reference>
<reference anchor="RFC5234">
  <front>
    <title>Augmented BNF for Syntax Specifications: ABNF</title>
    <author fullname="D. Crocker" initials="D." role="editor" surname="Crocker"/>
    <author fullname="P. Overell" initials="P." surname="Overell"/>
    <date month="January" year="2008"/>
    <abstract>
      <t>Internet technical specifications often need to define a formal syntax. Over the years, a modified version of Backus-Naur Form (BNF), called Augmented BNF (ABNF), has been popular among many Internet specifications. The current specification documents ABNF. It balances compactness and simplicity with reasonable representational power. The differences between standard BNF and ABNF involve naming rules, repetition, alternatives, order-independence, and value ranges. This specification also supplies additional rule definitions and encoding for a core lexical analyzer of the type common to several Internet specifications. [STANDARDS-TRACK]</t>
    </abstract>
  </front>
  <seriesInfo name="STD" value="68"/>
  <seriesInfo name="RFC" value="5234"/>
  <seriesInfo name="DOI" value="10.17487/RFC5234"/>
</reference>
<reference anchor="RFC5321">
  <front>
    <title>Simple Mail Transfer Protocol</title>
    <author fullname="J. Klensin" initials="J." surname="Klensin"/>
    <date month="October" year="2008"/>
    <abstract>
      <t>This document is a specification of the basic protocol for Internet electronic mail transport. It consolidates, updates, and clarifies several previous documents, making all or parts of most of them obsolete. It covers the SMTP extension mechanisms and best practices for the contemporary Internet, but does not provide details about particular extensions. Although SMTP was designed as a mail transport and delivery protocol, this specification also contains information that is important to its use as a "mail submission" protocol for "split-UA" (User Agent) mail reading systems and mobile environments. [STANDARDS-TRACK]</t>
    </abstract>
  </front>
  <seriesInfo name="RFC" value="5321"/>
  <seriesInfo name="DOI" value="10.17487/RFC5321"/>
</reference>
<reference anchor="RFC5322">
  <front>
    <title>Internet Message Format</title>
    <author fullname="P. Resnick" initials="P." role="editor" surname="Resnick"/>
    <date month="October" year="2008"/>
    <abstract>
      <t>This document specifies the Internet Message Format (IMF), a syntax for text messages that are sent between computer users, within the framework of "electronic mail" messages. This specification is a revision of Request For Comments (RFC) 2822, which itself superseded Request For Comments (RFC) 822, "Standard for the Format of ARPA Internet Text Messages", updating it to reflect current practice and incorporating incremental changes that were specified in other RFCs. [STANDARDS-TRACK]</t>
    </abstract>
  </front>
  <seriesInfo name="RFC" value="5322"/>
  <seriesInfo name="DOI" value="10.17487/RFC5322"/>
</reference>
<reference anchor="RFC6376">
  <front>
    <title>DomainKeys Identified Mail (DKIM) Signatures</title>
    <author fullname="D. Crocker" initials="D." role="editor" surname="Crocker"/>
    <author fullname="T. Hansen" initials="T." role="editor" surname="Hansen"/>
    <author fullname="M. Kucherawy" initials="M." role="editor" surname="Kucherawy"/>
    <date month="September" year="2011"/>
    <abstract>
      <t>DomainKeys Identified Mail (DKIM) permits a person, role, or organization that owns the signing domain to claim some responsibility for a message by associating the domain with the message. This can be an author's organization, an operational relay, or one of their agents. DKIM separates the question of the identity of the Signer of the message from the purported author of the message. Assertion of responsibility is validated through a cryptographic signature and by querying the Signer's domain directly to retrieve the appropriate public key. Message transit from author to recipient is through relays that typically make no substantive change to the message content and thus preserve the DKIM signature.</t>
      <t>This memo obsoletes RFC 4871 and RFC 5672. [STANDARDS-TRACK]</t>
    </abstract>
  </front>
  <seriesInfo name="STD" value="76"/>
  <seriesInfo name="RFC" value="6376"/>
  <seriesInfo name="DOI" value="10.17487/RFC6376"/>
</reference>
<reference anchor="RFC6409">
  <front>
    <title>Message Submission for Mail</title>
    <author fullname="R. Gellens" initials="R." surname="Gellens"/>
    <author fullname="J. Klensin" initials="J." surname="Klensin"/>
    <date month="November" year="2011"/>
    <abstract>
      <t>This memo splits message submission from message relay, allowing each service to operate according to its own rules (for security, policy, etc.), and specifies what actions are to be taken by a submission server.</t>
      <t>Message relay is unaffected, and continues to use SMTP over port 25.</t>
      <t>When conforming to this document, message submission uses the protocol specified here, normally over port 587.</t>
      <t>This separation of function offers a number of benefits, including the ability to apply specific security or policy requirements. [STANDARDS-TRACK]</t>
    </abstract>
  </front>
  <seriesInfo name="STD" value="72"/>
  <seriesInfo name="RFC" value="6409"/>
  <seriesInfo name="DOI" value="10.17487/RFC6409"/>
</reference>
<reference anchor="RFC6530">
  <front>
    <title>Overview and Framework for Internationalized Email</title>
    <author fullname="J. Klensin" initials="J." surname="Klensin"/>
    <author fullname="Y. Ko" initials="Y." surname="Ko"/>
    <date month="February" year="2012"/>
    <abstract>
      <t>Full use of electronic mail throughout the world requires that (subject to other constraints) people be able to use close variations on their own names (written correctly in their own languages and scripts) as mailbox names in email addresses. This document introduces a series of specifications that define mechanisms and protocol extensions needed to fully support internationalized email addresses. These changes include an SMTP extension and extension of email header syntax to accommodate UTF-8 data. The document set also includes discussion of key assumptions and issues in deploying fully internationalized email. This document is a replacement for RFC 4952; it reflects additional issues identified since that document was published. [STANDARDS-TRACK]</t>
    </abstract>
  </front>
  <seriesInfo name="RFC" value="6530"/>
  <seriesInfo name="DOI" value="10.17487/RFC6530"/>
</reference>
<reference anchor="RFC6648">
  <front>
    <title>Deprecating the "X-" Prefix and Similar Constructs in Application Protocols</title>
    <author fullname="P. Saint-Andre" initials="P." surname="Saint-Andre"/>
    <author fullname="D. Crocker" initials="D." surname="Crocker"/>
    <author fullname="M. Nottingham" initials="M." surname="Nottingham"/>
    <date month="June" year="2012"/>
    <abstract>
      <t>Historically, designers and implementers of application protocols have often distinguished between standardized and unstandardized parameters by prefixing the names of unstandardized parameters with the string "X-" or similar constructs. In practice, that convention causes more problems than it solves. Therefore, this document deprecates the convention for newly defined parameters with textual (as opposed to numerical) names in application protocols. This memo documents an Internet Best Current Practice.</t>
    </abstract>
  </front>
  <seriesInfo name="BCP" value="178"/>
  <seriesInfo name="RFC" value="6648"/>
  <seriesInfo name="DOI" value="10.17487/RFC6648"/>
</reference>
<reference anchor="RFC8259">
  <front>
    <title>The JavaScript Object Notation (JSON) Data Interchange Format</title>
    <author fullname="T. Bray" initials="T." role="editor" surname="Bray"/>
    <date month="December" year="2017"/>
    <abstract>
      <t>JavaScript Object Notation (JSON) is a lightweight, text-based, language-independent data interchange format. It was derived from the ECMAScript Programming Language Standard. JSON defines a small set of formatting rules for the portable representation of structured data.</t>
      <t>This document removes inconsistencies with other specifications of JSON, repairs specification errors, and offers experience-based interoperability guidance.</t>
    </abstract>
  </front>
  <seriesInfo name="STD" value="90"/>
  <seriesInfo name="RFC" value="8259"/>
  <seriesInfo name="DOI" value="10.17487/RFC8259"/>
</reference>
<reference anchor="RFC8601">
  <front>
    <title>Message Header Field for Indicating Message Authentication Status</title>
    <author fullname="M. Kucherawy" initials="M." surname="Kucherawy"/>
    <date month="May" year="2019"/>
    <abstract>
      <t>This document specifies a message header field called "Authentication-Results" for use with electronic mail messages to indicate the results of message authentication efforts. Any receiver-side software, such as mail filters or Mail User Agents (MUAs), can use this header field to relay that information in a convenient and meaningful way to users or to make sorting and filtering decisions.</t>
      <t>This document obsoletes RFC 7601.</t>
    </abstract>
  </front>
  <seriesInfo name="RFC" value="8601"/>
  <seriesInfo name="DOI" value="10.17487/RFC8601"/>
</reference>
<reference anchor="RFC9228">
  <front>
    <title>Delivered-To Email Header Field</title>
    <author fullname="D. Crocker" initials="D." role="editor" surname="Crocker"/>
    <date month="April" year="2022"/>
    <abstract>
      <t>The address to which email is delivered might be different than any of the addresses shown in any of the content header fields that were created by the email's author. For example, the address used by the email transport service is provided separately, such as through SMTP's "RCPT TO" command, and might not match any address in the To: or cc: fields. In addition, before final delivery, handling can entail a sequence of submission/delivery events, using a sequence of different destination addresses that (eventually) lead to the recipient. As well, a receiving system's delivery process can produce local address transformations.</t>
      <t>It can be helpful for a message to have a common way to record each delivery in such a sequence, noting each address used in the sequence to that recipient, such as for (1) analyzing the path a message has taken, (2) loop detection, or (3) formulating the author's address in a reply message. This document defines a header field for this information.</t>
      <t>Email handling information discloses details about the email infrastructure, as well as about a particular recipient; this can raise privacy concerns.</t>
      <t>A header field such as this is not automatically assured of widespread use. Therefore, this document is being published as an Experimental RFC, looking for constituency and for operational utility. This document was produced through the Independent Submission Stream and was not subject to the IETF's approval process.</t>
    </abstract>
  </front>
  <seriesInfo name="RFC" value="9228"/>
  <seriesInfo name="DOI" value="10.17487/RFC9228"/>
</reference>

<reference anchor="DKIMKEYS">
   <front>
      <title>Domain Name Specification for DKIM2</title>
      <author fullname="Wei Chuang" initials="W." surname="Chuang">
         <organization>Google</organization>
      </author>
      <date day="18" month="March" year="2026"/>
      <abstract>
	 <t>   The updated DomainKeys Identified Mail (DKIM2) permits an
   organization that owns the signing domain to claim some
   responsibility for a message by associating the domain with the
   message through a digital signature.  This is done by publishing to
   Domain Name Service (DNS) of the domain a public key that is then
   associated to the domain and where messages can be signed by the
   corresponding private key.  Assertion of responsibility is validated
   through a cryptographic signature and by querying the Signer’s domain
   directly to retrieve the appropriate public key.  This document
   describes DKIM2 DNS record format and how to find the record.

	 </t>
      </abstract>
   </front>
   <seriesInfo name="Internet-Draft" value="draft-chuang-dkim2-dns-04"/>
   
</reference>



    </references>

    <references title='Informative References' anchor="sec-informative-references">



<reference anchor="RFC5598">
  <front>
    <title>Internet Mail Architecture</title>
    <author fullname="D. Crocker" initials="D." surname="Crocker"/>
    <date month="July" year="2009"/>
    <abstract>
      <t>Over its thirty-five-year history, Internet Mail has changed significantly in scale and complexity, as it has become a global infrastructure service. These changes have been evolutionary, rather than revolutionary, reflecting a strong desire to preserve both its installed base and its usefulness. To collaborate productively on this large and complex system, all participants need to work from a common view of it and use a common language to describe its components and the interactions among them. But the many differences in perspective currently make it difficult to know exactly what another participant means. To serve as the necessary common frame of reference, this document describes the enhanced Internet Mail architecture, reflecting the current service. This memo provides information for the Internet community.</t>
    </abstract>
  </front>
  <seriesInfo name="RFC" value="5598"/>
  <seriesInfo name="DOI" value="10.17487/RFC5598"/>
</reference>
<reference anchor="RFC8017">
  <front>
    <title>PKCS #1: RSA Cryptography Specifications Version 2.2</title>
    <author fullname="K. Moriarty" initials="K." role="editor" surname="Moriarty"/>
    <author fullname="B. Kaliski" initials="B." surname="Kaliski"/>
    <author fullname="J. Jonsson" initials="J." surname="Jonsson"/>
    <author fullname="A. Rusch" initials="A." surname="Rusch"/>
    <date month="November" year="2016"/>
    <abstract>
      <t>This document provides recommendations for the implementation of public-key cryptography based on the RSA algorithm, covering cryptographic primitives, encryption schemes, signature schemes with appendix, and ASN.1 syntax for representing keys and for identifying the schemes.</t>
      <t>This document represents a republication of PKCS #1 v2.2 from RSA Laboratories' Public-Key Cryptography Standards (PKCS) series. By publishing this RFC, change control is transferred to the IETF.</t>
      <t>This document also obsoletes RFC 3447.</t>
    </abstract>
  </front>
  <seriesInfo name="RFC" value="8017"/>
  <seriesInfo name="DOI" value="10.17487/RFC8017"/>
</reference>
<reference anchor="RFC8032">
  <front>
    <title>Edwards-Curve Digital Signature Algorithm (EdDSA)</title>
    <author fullname="S. Josefsson" initials="S." surname="Josefsson"/>
    <author fullname="I. Liusvaara" initials="I." surname="Liusvaara"/>
    <date month="January" year="2017"/>
    <abstract>
      <t>This document describes elliptic curve signature scheme Edwards-curve Digital Signature Algorithm (EdDSA). The algorithm is instantiated with recommended parameters for the edwards25519 and edwards448 curves. An example implementation and test vectors are provided.</t>
    </abstract>
  </front>
  <seriesInfo name="RFC" value="8032"/>
  <seriesInfo name="DOI" value="10.17487/RFC8032"/>
</reference>
<reference anchor="RFC8617">
  <front>
    <title>The Authenticated Received Chain (ARC) Protocol</title>
    <author fullname="K. Andersen" initials="K." surname="Andersen"/>
    <author fullname="B. Long" initials="B." role="editor" surname="Long"/>
    <author fullname="S. Blank" initials="S." role="editor" surname="Blank"/>
    <author fullname="M. Kucherawy" initials="M." role="editor" surname="Kucherawy"/>
    <date month="July" year="2019"/>
    <abstract>
      <t>The Authenticated Received Chain (ARC) protocol provides an authenticated "chain of custody" for a message, allowing each entity that handles the message to see what entities handled it before and what the message's authentication assessment was at each step in the handling.</t>
      <t>ARC allows Internet Mail Handlers to attach assertions of message authentication assessment to individual messages. As messages traverse ARC-enabled Internet Mail Handlers, additional ARC assertions can be attached to messages to form ordered sets of ARC assertions that represent the authentication assessment at each step of the message-handling paths.</t>
      <t>ARC-enabled Internet Mail Handlers can process sets of ARC assertions to inform message disposition decisions, identify Internet Mail Handlers that might break existing authentication mechanisms, and convey original authentication assessments across trust boundaries.</t>
    </abstract>
  </front>
  <seriesInfo name="RFC" value="8617"/>
  <seriesInfo name="DOI" value="10.17487/RFC8617"/>
</reference>

<reference anchor="CONCLUDEARC">
   <front>
      <title>Concluding the ARC Experiment</title>
      <author fullname="J. Trent Adams" initials="J. T." surname="Adams">
         <organization>Proofpoint</organization>
      </author>
      <author fullname="John R. Levine" initials="J. R." surname="Levine">
         <organization>Taughannock Networks</organization>
      </author>
      <date day="4" month="December" year="2025"/>
      <abstract>
	 <t>   This document calls for a conclusion to the experiment defined by
   “The Authenticated Received Chain (ARC) Protocol,” (RFC8617) and
   recommends that ARC no longer be deployed or relied upon between
   disparate senders and receivers.  The document summarizes what ARC
   set out to do, reports on operational experience, and explains how
   the experience gained during the experiment is being incorporated
   into the proposed DKIM2 work as the successor to DomainKeys
   Identified Mail (DKIM).  To avoid any future confusion, it is
   therefore requested that ARC (RFC8617) be marked “Obsolete” by the
   publication of this Internet-Draft.

	 </t>
      </abstract>
   </front>
   <seriesInfo name="Internet-Draft" value="draft-adams-arc-experiment-conclusion-01"/>
   
</reference>



    </references>

</references>



  </back>

<!-- ##markdown-source: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-->

</rfc>

