DKIM signatues generated by Messaging Gateway (SMG) may omit the x= tag which defines the signature expiration even though signature expiration is configured for DKIM. This means that DKIM signatures will not be considered invalid based on signature expiration timouts; the DKIM signatures generatied by SMG will be considered valid forever.

Sample DKIM signature missing 'x=' tag:

DKIM-Signature: v=1; a=rsa-sha256; d=2k8domain.test; s=dkim; c=relaxed/simple;
       q=dns/txt; [email protected]; t=1499194186;
       h=From:Sender:Reply-To:Subject:Date:Message-ID:To:Cc:MIME-Version:Content-Type:
       Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:Resent-From:
       Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id:
       List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive;
       bh=03JMn/Nk2XWpGfOntottLUCQq7ciKcDA7aTKXYB6ovg=;
       b=Kl6g717A4sCWrrYa0SeOT+9CnRvQIwaZNxLBiDAiaUunAM5/ofw58ALlfJCNOZfA
       paqUnxSRoHpiv11s4jx4BtH6jebvSwwALMQlySJxiuVRH13z0MgzqFRuS9FhWMdJ
       H4GduE6CqsYLH1z6eXmM6a/nbD1fX6ywzL5+JAyUorM=;

Messaging Gateway

This issue has been resolved with the SMG 10.6.4 release.

For earlier SMG releases, the failure to include the signature expiration date does not significantly impact the ability of Messaging Gateway to sign messages or validate DKIM signatures.