What is the IETF standard for reporting events (RFC 8460, 8461)?
These RFCs define modern transport security, not all event reporting.
RFC 8461 defines MTA STS which is SMTP MTA Strict Transport Security. This is a policy that tells other servers your domain requires an encrypted connection using TLS.
RFC 8460 defines TLS RPT which is SMTP TLS Reporting. This is the reporting mechanism that allows you to receive reports on TLS failures when a connection fails to encrypt.
They work together. Reporting for authentication results such as SPF and DKIM is handled by DMARC which is defined in RFC 7489.
Was this answer helpful?
Thanks for your feedback!