Welcome | Sign In
TechNewsWorld.com
Security

Cisco, Yahoo Propose Anti-Spam Technology Standard

Print Version
E-Mail Article
Reprints
Cisco, Yahoo Propose Anti-Spam Technology Standard

By Susan B. Shor
TechNewsWorld
07/12/05 1:21 PM PT

Microsoft, which is listed as a partner in the DKIM alliance, has also proposed its own standard, Sender ID, which works by verifying that a message was actually sent from the domain claimed in the "from" field and other parts of the message. Although this is a good step, analysts say there is no magic technology that will eliminate all spam and phishing attempts.


Tech Industry Paper - Finding Strength Through Customer Service
Poised to capitalize on an upturn in the economy, technology companies are focused on retention & service. This paper, from Convergys, provides the latest research on customer experience for B2B & B2C technology customers. Learn more.

Cisco (Nasdaq: CSCO) and Yahoo (Nasdaq: YHOO) have joined forces with several anti-spam companies to propose a standard for filtering junk out of in-boxes.

Software companies SendMail and PGP worked with the others on DomainKeys Identified Mail (DKIM), which works through public key cryptography. Each message gets a signature, which can then be checked for authenticity by verifying the originating domain and whether the message has been tampered with.

The technology has been submitted to the Internet Engineering Task Force (IETF), which sets Internet standards. It will discuss the proposal the end of this month.

Alternate Plan

Microsoft (Nasdaq: MSFT), which is listed as a partner in the DKIM alliance, has also proposed its own standard, Sender ID, which works by verifying that a message was actually sent from the domain claimed in the "from" field and other parts of the message.

Although this is a good step, analysts say there is no magic technology that will eliminate all spam and phishing attempts.

"I think some of the recent press about DKIM paints it as more of a panacea than it actually is," Ed Moyle, president, SecurityCurve, told TechNewsWorld. "Specifically, DKIM is not a universal solution to phishing or spamming. It does help to mitigate address spoofing, which is a very real problem that facilitates phishing and spamming, but it does not achieve the end goal of eliminating either entirely."

There are problems with both technologies, Peter Firstbrook, research director, Gartner (NYSE: IT), said.

"There are some legitimate reasons why e-mail might originate from an IP address that is not registered (e.g. remote and traveling workers and mobile devices, backup systems)," he wrote in an e-mail Increase Customer Sales with Email Marketing -- Free Trial from VerticalResponse to TechNewsWorld. "Spammers can simply publish their own sender ID/domain key records, meaning the authentication will be pointless. Although it will make black lists more useful, spammers will simply have to change IPs with each new campaign."

Time to Get Moving

But Forrester analyst Jonathan Penn said the real issue is implementation speed.

"But the ultimate problem we have here isn't with the various specifications. It's that the great is the enemy of the good. Everyone has been fretting about these imperfections for over a year already," he told TechNewsWorld. "And while these developers fuss and fret over these finer points, sender validation isn't being employed to fight the spam and phishing problems. So in the meantime, spam volume continues to double every year and the phishing problem is getting exponentially worse."

Alt-N Technologies, AOL, EarthLink (Nasdaq: ELNK), IBM (NYSE: IBM), Microsoft and VeriSign (Nasdaq: VRSN), are also involved in DKIM technology.

Print Version E-Mail Article Reprints More by Susan B. Shor

Talkback: Be the first to comment on this story.

More by Susan B. Shor

Salesnet President Jonathan Tang Ready to Take On Salesforce.com
February 07, 2006
"We think it's Salesnet's time now. We've been around since the beginning, we've been lying low, but you're going to start to see more of us. We've done it through organic growth and happy customers. We continue to focus on customers." 		Comcast Follows Time Warner in Offering 'Family' Programming Tier
December 23, 2005
"The demand for this type of tier is coming from the FCC and Christian conservatives. It has nothing to do with legitimate consumer demand," Todd Chanko, senior analyst at Jupiter Media, told the E-Commerce Times. 		High-Risk Flaw Found in Symantec's Software
December 22, 2005
"Part of the significance of this vulnerability announcement is that your machine can be exploited without you needing to do anything at all. You don't even have to open an e-mail or attachment, and this happens with the default configuration of the product," said Forrester Research senior analyst Michael Gavin.
Don't miss a story -- sign up for our FREE e-mail newsletters and view the latest headlines at a glance.
Tech News Flash [ View Sample ]
E-Commerce Minute [ View Sample ]
ECT News Network Weekly Newsletter [ View Sample ]
Shortcuts
> Get Business and Technology News Alerts
> Most Popular | Spotlight Features | Exclusives
> This Week on ECT News Network | Podcasts
> WiFi Hotspot Locator
> Inside TechNewsWorld
TechNewsWorld
E-Commerce Times
MacNewsWorld
CRM Buyer
LinuxInsider
Today's TechNewsWorld Sponsors
New Convergys Paper for the Tech Industry
Finding Strength Through Customer Service
Vertical Response Email Marketing!
Sign up for your Free Trial today and send 100 emails on us!
Avaya Aura™
Save up to 40% on calling costs with Avaya Aura™
Complimentary Webinar
How Much is 'Free' Costing You? DaveRamsey.com’s 567% ROI with Enterprise Analytics
Entrust Extended Validation SSL
Entrust EV SSL certificates -- "go green" for less. Now from only $199 per year.
Trend Micro Smart Protection Network(TM)
Lower your content security management costs by up to 40%.
ECT News Network Information
Reader Services
Corporate
ECT News Network
Terms of Service | Privacy Policy | How To Advertise
Copyright 1998-2009 ECT News Network, Inc. All Rights Reserved.