E-mail Authentication At Critical Mass?
In its 2003 Project Lumos white paper, the ESPC outlined the path to curbing spam, phishing, and other abusive e-mail practices. In it, the plan was made to push for widespread adoption of authentication services by senders and receivers first, and then to layer on reputation and accreditation services after that.
In a report released today, the ESPC found that 16 of the top 18 ISPs in the U.S. was applying authentication to outgoing e-mails, and eight of those ISPs were also checking for inbound authenticated e-mail and applying some sort of filter to the mail as a result.
Yahoo, Microsoft and Google were found to be the most assertive in their use of authentication. Yahoo and its cable and telecom partners are verifying incoming messages and signing outgoing messages using the DomainKeys cryptographic method, filtering e-mail as a result, and notifying users of passing and failing results. Microsoft performs similar functions using SPF and Sender ID records.
Google, whose Gmail is much smaller than Yahoo mail or MSN’s Hotmail, is going all-out and matching Yahoo’s use of DomainKeys, and also publishing SPF records for outgoing messages. Among other notable ISPs, AOL is publishing SPF and Sender ID records on outgoing messages, but not yet doing anything with incoming messages. Earthlink is signing messages with DomainKeys. A few other ISPs on the list, like Verizon, Roadrunner and NetZero, are publishing SPF records.
Now that the industry is nearing critical mass with authentication, the ESPC is beginning parallel efforts to promote the adoption of reputation services.
The full report is available at the ESPC’s site.
More about:
The Merkle B2B 2023 Superpowers Index outlines what drives competitive advantage within the business culture and subcultures that are critical to success. It is the indispensable guide for B2B marketers to deliver world-class experiences and keep pace with the dynamic environment. Download Now
The ClicData survey found that various challenges exist that prevent organizations from achieving such gains. These challenges included inaccessible data formats and limited flexibility in displaying data in dashboards. Download Now
The need for fraud prevention in the digital world is critical now more than ever. Why? Thinking about your own behavior, consider how you complete transactions and how this has changed over the last 5 years. Download Now
The need for fraud prevention in the digital world is critical now more than ever. Why? Thinking about your own behavior, consider how you complete transactions and how this has changed over the last 5 years. Download Now