News & Information for Technology Purchasers
NewsFactor Network Sites:   NewsFactor.com Security CRM Business Sci-Tech Newsletters XML/RSS Feed  
   
Home Enterprise I.T. Hardware Software Communications More Topics...
Enterprise Hardware
Average Rating:
Rate this article:  
E-Mail Authentication: Holy Grail or Lost Cause? E-Mail Authentication: Holy Grail or Lost Cause?
By Jack M. Germain
August 15, 2005 10:00AM

    Bookmark and Share
In response to ongoing e-mail abuses, many Internet experts have called for an e-mail authentication system that would immediately reduce spoofing, phishing and fraud. However, opponents argue that e-mail authentication would take too long to create and ultimately have little impact on the problem.
 

Related Topics

e-mail

Advertisement

E-mail as we know it today is a broken communications Relevant Products/Services medium. Simply put, e-mail was never designed to be anything more than text messages delivered through multiple computer systems strung together. But like most things pushed onto the Internet scene in the early days, more functions were added to e-mail's fragile delivery structure. Each new bolted-on innovation created another risk for a crack in the system.

These add-ons eventually created opportunities for malicious abusers to mask their identities and use the infrastructure Relevant Products/Services to deliver rogue code to unsuspecting computer users. Once this kind of abuse became widespread, criminals soon learned to use sophisticated social-engineering techniques to steal money from innocent victims unaware of the dangers of identity theft.

Today, the norm is for spam e-mail to serve the cause of criminal schemes. In response to these kinds of threats, many Internet security Relevant Products/Services experts have called for an e-mail authentication system that they believe would significantly reduce e-mail-related crime. Supporters of such tactics believe e-mail authentication strategies will immediately put a dent in e-mail-based fraud.

A recent New York City gathering of leading Internet security companies and software developers led to a consensus that, while not a perfect solution, e-mail authentication represents a significant step forward for the entire Internet community. Still, detractors dismiss e-mail authentication and say it will have little affect, if any at all, on the ongoing problem.

Two Plans for a Cure

Developers have proposed two methods to beef up the e-mail system. Both methods do not require individual or business users to do anything different in processing their e-mail. Instead, they will only need users to make more educated decisions when determining "good" mail from "bad." So far, Internet service providers (ISPs) and e-mail gateway services are using both methods.

Yahoo and a group of its supporters are pushing the "domain keys" method. This strategy requires e-mail senders to complete a two-part verification process. The ISP or e-mail gateway service must first authenticate the message sender. Then the message sender must pass a second phase called the "reputation score."

The second most popular authentication method is called the Sender ID Framework (SIDF), which is a merger of two earlier e-mail security proposals, one from Microsoft Relevant Products/Services and another from e-mail provider Pobox. The Sender ID technology requires two levels of authentication before an e-mail message is delivered. The message originator registers for inclusion on a list that confirms the Internet Protocol (IP) address of the sender. The mail server Relevant Products/Services also must confirm that the mail originator is approved to enter the traffic stream for delivery to the recipient. (continued...)

1  |  2  |  3  |  4  |  Next Page >

 

Advertisement


Advertisement


 Enterprise Hardware
1.   Flat PC Shipments Hurt Dell's Stock
2.   New Pogoplug 'Cloud' Gets Social
3.   Rumors Say Apple Tablet Delayed
4.   Dell Makes Green Move with Bamboo
5.   Steep Mac Discounts Seem Unlikely


advertisement
Product Information and Resources for Technology You Can Use To Boost Your Business

Enterprise Hardware

  Go Green with IBM Blade Center
  

Network Security Spotlight
House Lawmakers Push Ban on Peer-to-Peer Software
Stung by an embarrassing electronic leak revealing ethics investigations into dozens of lawmakers, Congress moved to prohibit federal employees from using the file-sharing software blamed for the disclosure.
 
GAO: Los Alamos Computer Security Has Weaknesses
Security weaknesses uncovered in Los Alamos National Laboratory's computer network increase the risk of a classified-information breach, says the Government Accountability Office.
 
Computer Security Firm Fortinet Plans IPO This Week
Fortinet plans to go public in an initial public offering, giving investors a chance to tap a network security provider with sales that are expected to grow. The IPO could be valued at $137.5 million or more.
 

Enterprise Hardware Spotlight
Flat Shipments Hurt Dell Despite Increased Earnings
Dell's earnings are up and expectations are solid, but the company's stock still took a hit after analysts signaled the company isn't playing a key role in the PC market recovery.
 
New Pogoplug 'Personal Cloud' Does Social Networking
Cloud Engines has released its newest version of the Pogoplug, a small "multimedia sharing device" that connects hard drives to the Internet and allows a user to access the files remotely.
 
Apple Tablet Rumored Delayed as Publisher Gears Up
There have been so many rumors of an Apple tablet that it has taken on legendary status. But now the legend is being revised with reports of a delay and that a major publisher is getting ready.
 

Enterprise Technology Spotlight
Flat Shipments Hurt Dell Despite Increased Earnings
Dell's earnings are up and expectations are solid, but the company's stock still took a hit after analysts signaled the company isn't playing a key role in the PC market recovery.
 
Smartphones: A Bigger Target for Security Threats
Smartphones are increasingly prevalent and adept at handling more tasks, including trading stocks, paying bills, and buying stuff online. That makes them attractive to thieves and hackers.
 
FBI Says Hackers Targeting Law Firms, PR Companies
Hackers are targeting law firms and public relations companies with a sophisticated e-mail scheme that breaks into their computer networks to steal sensitive data, often linked to large corporate clients.
 

Navigation
NewsFactor Network
Home/Top News | Enterprise I.T. | Hardware | Software | Communications | Network Security | Wireless Tech | Linux/Open Source
Apple/Macintosh | Microsoft/Windows | World Wide Web | Data Storage | E-Commerce | Personal Tech | Tech Trends | Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters | Free Whitepapers | XML/RSS Feed

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2009 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo.