Security - eWeek

Home

Security

Page 2 - Sender ID Rises From the Dead, Spooky Patent and All

	LATEST STORIES
	- BlackBerry Storm Mobile Smart Phone Thunders... - New Features of the Verizon Wireless BlackBe... - Verizon Wireless BlackBerry Storm by the Num... - Verizon Wireless BlackBerry Storm: First Ima... - Adobe Releases Clickjacking Advisory as Demo...

	BEST OF THE BLOGOSPHERE
	iPhone's Mediocre Battery Life Still Beats Rivals The Android Developer Revolt Google Feels Developers' Pain Nokia Launches Location-Aware Chat Client Parallel Processing Transforming Enterprise Computing

	eWEEK EDITORIAL CALENDAR
	For a list of what eWEEK is covering this year, go to our editorial calendar.


	Killing Botnets: A View From the Trenches from McAfee Using Security Compliance Software to Improve Business Efficiency and Reduce Costs from Symantec Using Web Conferencing to Ensure Successful Enterprise Application Deployment from WebEx Communications See All White Papers >


	Security Solutions Build a Successful Security Strategy As enterprises enable remote workers, promote collaborative tools and increase interdependence on global business partners, security challenges grow. Get up to speed on effective strategies, best practices and tools to keep data, clients, servers and mobile devices safe from threats. Join us on Sept. 17 for this interactive Virtual Tradeshow as industry experts, authorities and your peers share the information you need to build a solid security foundation. Register Now!

Enterprise Uses of Social Networks

In and Off the Cloud

Benioff on Platform Development

Most Disruptive Companies Part 3

What Can Green Do For You?

Sender ID Rises From the Dead, Spooky Patent and All

By Larry Seltzer
2004-10-28

Article Views: 692
Article Rating:

/ 0

Table of Contents:

Rate This Article:

Add This Article To:

Digg this

Del.icio.us

Slashdot

Y! My Web

E-mail

Furl

Google

Simpy

Spurl!

PDF Version

Sender ID Rises From the Dead, Spooky Patent and All - ' Who will set the '
( Page 2 of 2 )

standards?">

You know who else is likely to be assuaged? The FTC. After having made veiled threats to the industry to develop an authentication standard lest one be imposed on them, the FTC will be holding an E-mail Authentication Summit in D.C. Nov. 9-10. The modified Sender ID and support for it from AOL (the home team at D.C. events) are just about the only progress the industry can point to.

Its only been a little over a month, but its not like Ive seen serious efforts to move other proposals forward, with one exception. There is a separate proposed working group, IETF-Mailsig, working on a proposed standard for mail authentication through cryptographic signatures. Lots of top people believe in the cryptographic solution, if not in the short term than as an eventual successor to an IP-based solution like Sender ID.

And just because you support Sender ID doesnt mean you cant support other specs, although the administration can be cumbersome. Meng Wong diagrammed out some of the issues for a dual-Sender ID/Domain Keys implementation. Its hairy, but it can be done. I used to think that multiple implementations would be the norm, but I have to think now that administrators will want one set of records to maintain.

For insights on security coverage around the Web, check out eWEEK.com Security Center Editor Larry Seltzers Weblog.

If Sender ID muscles its way into e-mail dominance, what will opensource developers do? There was some talk of ignoring or directly challenging the patent application (there is a complicated and expensive process for this called a patent interference; OSS developers arent usually in a position to mount such an effort). Ignoring it would be a dangerous gamble, although I dont think Microsofts going after anyone unless they sue the company over it themselves (i.e., this is a defensive patent).

Personally, Im sick and tired of the lack of achievement that openness and the OSS community have gotten us. If it werent for private companies like Microsoft and Yahoo and Meng Wong personally, we wouldnt have anywhere near as many plausible solutions in sight as we do now.

In the meantime the lack of e-mail authentication and its attendant problems, including spam, phishing and worms, are turning the Internet into a house of horrors.

Security Center Editor Larry Seltzer has worked in and written about the computer industry since 1983.

Check out eWEEK.coms Security Center at http://security.eweek.com for security news, views and analysis.
Be sure to add our eWEEK.com security news feed to your RSS newsreader or My Yahoo page:

MOST READ SECURITY STORIES
PAST 30 DAYS

1 - When Windows Goes All 64-Bit (51938)
2 - Sarah Palin Hack an Example of Password Recovery Backfire (46234)
3 - Security Hole in Adobe Flash Allows Free Amazon Movie Downloads (12914)
4 - Mark Russinovich on the Future of Security (10973)
5 - How to Really Delete Data for Absolutely Sure (10612)
6 - Sarah Palin's Private E-Mail Reportedly Hacked by Activists (9348)
7 - Still Overflowing After All These Years (8893)
8 - Malware Poses as iPhone Game (8403)
9 - Former Intel Employee Accused of Stealing Corporate Data Points Up Insider Threat (8152)
10 - HTTPS Cookie-Hijacking Tool CookieMonster Gobbles Personal Data (8047)

Videos Sponsored by:

EWEEK E-MAIL NEWSLETTERS bring you reliable, timely information to stay on top of the business of technology -- and technology in business -- and get more out of the Web. Make your choices and start your subscriptions today!

EWEEK RSS NEWS FEEDS contain a daily feed of our latest stories from over 30 different categories including Enterprise Apps, Business Intelligence, Security, VOIP and more!

Subscribe to our RSS feeds today for free...

	Issue Index \| Contact Us \| About \| Advertise \| Magazine Customer Service \| Site Map
	Security: Enterprise Security Network Security Infrastructure Security How To: Data IT Security News Cheap Hack Blog Security Watch Blog Storage: Data Storage Cloud Storage Storage Virtualization Network Access Storage Storage Reviews Data Storage News How To: Storage Storage Station Blog Computing: Apple OSX Linux Systems Windows Vista Managed Print Services Cloud Computing PC Reviews Microsoft Watch Blog Apple Watch Blog Google Watch Blog Communications: VoIP Solutions Wireless Technology Messaging Software Web Services Mobile Applications Wireless News Mobile Reviews Apps & Development: Application Development SAAS Search Engines Database Software Web 2.0 IT Project Management Emerging Tech Blog CIO Insight Blogs CIOs
	Vertical Markets: Federal Government IT Health Care IT Finance IT Mid-Market Channel Partners Careers Blog Value Added Resellers More eWeek Links: Tech Knowledge Center Tech Newsletters Tech RSS Feeds White Papers Tech Podcasts Tech Videos eWeek Magazine Subscriptions Enterprise Websites: ZDE Home Baseline Channel Insider CIO Insight eSeminars eWeek Mid-Market Publish Online Web Buyers Guide Developer Websites: Dev Shed DeveloperShed ASP Free MS DevSource SEO Chat Codewalkers Tutorialized Scripts.com Dev Mechanic Dev Articles Web Hosters Dev Hardware Technology Websites: Device Forge Desktop Linux Linux Devices Windows for Devices iGrep Search Engine PDF Zone Linux Watch
	Use of this site is governed by our Terms of Use and Privacy Policy Copyright ©1996-2008 Ziff Davis Enterprise Holdings Inc. All Rights Reserved. eWEEK and Spencer F. Katt are trademarks of Ziff Davis Enterprise Holdings, Inc. Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Enterprise Inc. is prohibited. eWeek is your best source for the latest Technology News. ZDE Cluster 5 hosted by Hostway.