The DKIM working group session was called to order at about 15:20 PST on Tuesday, 4 December 2007, with 55 attendees. Stephen Farrell presented the agenda, and covered document status: SSP Requirements is now RFC 5016, and there are three active working-group drafts, each of which will be presented later. Tony Hansen and Murray Kucherawy presented the results of a DKIM interoperability workshop that was recently held in the Dallas area. 20 companies and organizations participated, and the interoperability results were generally very good. A few minor issues were uncovered: edge conditions in the "relaxed" canonicalization algorithm, an ABNF error, and similar things. We will submit errata to correct most of these issues, and add text to the "deployment" document for some others. Jim Fenton presented a status update on the SSP draft, giving a review of recent changes and going over the open issues. Jim used quotes from two "customers" early in his presentation, which prompted Dave Crocker to comment, and there was some significant discussion of the appropriateness of optimism in this regard, of some aspects of the SSP draft that Dave considers wrong, and of Dave's review of SSP, which he'd posted to the DKIM and Apps-Review mailing lists earlier that day. Further discussion of the review has been taken to the DKIM list (and that discussion has already been quite active). On the open issues: there was some discussion here and there, but a lot of discussion on one issue in particular: #1399: Clarify i= vs. SSP, “...need to provide the exact semantics in SSP of how a receiver determines whether a DKIM signature satisfies the SSP criteria or not.” The result of the discussion is that the chairs think we need one more round, no more than a week, of discussion on the mailing list before we determine a closure for this issue. We plan to start working-group last call after issue 1399 is closed and after discussion has finished on Dave Crocker's comments. Doug Otis presented a (non-WG) draft, "DKIM Third-Party Authorization for Sender Signer Practices". Murray Kucherawy presented (non-WG) drafts dealing with passing authentication results down the line (including all the way to the MUA). There was brief discussion about his draft for using an ESMTP extension to pass the information, in order to reduce attacks against MUAs behind non-compliant MTAs. Tony Hansen presented a very drief status report (and call for reviews) on the Overview document and the new spin-off, Deployment and Operations. The session was adjourned at about 17:20. -- Barry Leiba, DKIM working group co-chair