Industry giants get tough on spam

Latest anti-spam standard uses digital signatures to verify sender identity

Tom Sanders in California

In a bid to tackle forged emails, Cisco Systems, Yahoo and others have submitted an anti-spam standard to the Internet Engineering Task Force (IETF). 

The Domain Keys Identified Mail (DKIM) specification adds an encrypted digital signature to every email message, allowing recipients to verify the sender's identity.

Advertisement

A mismatch between the sender and the signature is likely to be the result of a spam or phishing email and can easily be picked up by a filter. A correct certificate should increase the recipient's confidence in the sender's authenticity.

The proposed specifications merge two separate technologies: Yahoo's DomainKeys and Cisco's Identified Internet Mail.

Companies contributing to the standard include Alt-N Technologies, America Online, EarthLink, IBM, Microsoft and VeriSign.

The IEFT is expected to discuss the proposed standard later this month at a meeting in Paris. If adopted, the technology will be available free of charge.

Mail servers would have to be DKIM enabled to decode the signature and verify its contents. Similarly a sender's mail server would have to provide both a public and private key to create a unique signature.

While Microsoft has contributed to DKIM, the company is also the main backer of the Sender ID standard. The technology lost several backers last year after a dispute over Microsoft's refusal to allow it to be used in open source applications.

Microsoft is scheduled to start using Sender ID in November with its Hotmail and MSN services. Messages sent to these services from servers that do not provide a so-called Sender Policy Framework (SPF) record will be marked as spam and quarantined.

The SPF contains a list that matches mail servers with a unique IP address. A mismatch between the originating IP address and the domain name listed in the email would suggest that the sender's address has been forged.

The technology breaks some existing email applications, however, including forwarding services and 'send a friend' features in which websites offer to notify friends about a service through email.

  • Have your say
  • Send to a friend
  • Print
  • Digg
  • Reddit
  • Share

Tags:

Do you agree?

Further reading

More trouble for Sender ID

New blow for Sender ID as AOL joins disbelievers

More embarrassment for Microsoft as major ISP rejects anti-spam initiative

Opposition to Sender ID

Sender ID loses open source support

Apache Software Foundation among developers shunning Microsoft anti-spam measure

Search giants hook up to cut blog spam

Yahoo and Google combat unsolicited blog comments

ISPs agree on measures to put spammers out of business

Linx members aim to take financial incentive out of spam

Related whitepapers

Related jobs

Most watched

HTC Hero

Hands on with the HTC Hero

V3.co.uk gets a walk through of the Hero, which includes HTC's new Sense overlay for Android

Xperia X1

Video Review: Sony Ericsson Xperia X1

First Looks Editor Ian Williams gets hands on with the Sony Ericsson Xperia X1

IT white papers

Search white papers

Top categories

Poll

Poll: Summer smartphones

Poll: Summer smartphones

Which smartphone will you be taking to the beach this summer?

View poll results

Advertisement

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

Existing User

Newsletter user login:

Enter email address to edit your newsletter preferences

Job of the week

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Hiring now on ComputingCareers:

Related IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Spotlight

HTC Hero

Hands on with the HTC Hero

V3.co.uk gets a walk through of the Hero, which includes...

NetGear ReadyNAS NVX

Review: NetGear ReadyNAS NVX

NetGear's four-bay compact network-attached storage gets a serious speed boost

AMD

AMD adds to six-core Opteron line up

New HE processors promise even lower power consumption

Adobe Systems

Adobe launches ColdFusion 9 and ColdFusion Builder

Firm promises enhanced developer productivity

Primary Navigation