Sender ID: Authenticating E-Mail

Wong, Meng Weng; Lyon, Jim

doi:10.17487/rfc4406

Cited by 53 publications

(30 citation statements)

References 3 publications

(14 reference statements)

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…To avoid accepting spam, technologies that verify sender identity before accepting email have been proposed. Prominent examples of email verification systems are DomainKeys [20], [21], SenderID [22], and Sender Policy Framework (SPF) [23]. SPF and SenderID help verify that the machine that sent an email was authorized to do so.…”

Section: In Our Dnssec Data Support Sshfp Implying That the Adoptionmentioning

confidence: 99%

Touring DNS Open Houses for Trends and Configurations

Kalafut

Shue

Gupta

2011

IEEE/ACM Trans. Networking

View full text Add to dashboard Cite

Abstract-DNS is a critical component of the Internet. It maps domain names to IP addresses and serves as a distributed database for various other applications, including mail, Web, and spam filtering. This paper examines DNS zones in the Internet for diversity, adoption rates of new technologies, and prevalence of configuration issues. To gather data, we sweep 60% of the Internet's domains in June -August 2007 for zone transfers. 6.6% of them allow us to transfer their complete information. Surprisingly, this includes a large fraction of the domains deploying DNSSEC. We find that DNS zones vary significantly in size and some span many ASes. Also, while antispam technologies appear to be getting deployed, the adoption rates of DNSSEC and IPv6 continue to be low. Finally, we also find that carelessness in handing DNS records can lead to reduced availability of name servers, email, and Web servers. This also undermines anti-spam efforts and the efforts to shut down phishing sites or to contain malware infections.

show abstract

Section: In Our Dnssec Data Support Sshfp Implying That the Adoptionmentioning

confidence: 99%

Touring DNS Open Houses for Trends and Configurations

Kalafut

Shue

Gupta

2011

IEEE/ACM Trans. Networking

View full text Add to dashboard Cite

show abstract

“…For example, see [RFC4408], [RFC4406], and [RFC4407] for some current uses of the sending system's IP Address. The IP Address is obtained via underlying Internet information mechanisms and is therefore trusted to be accurate.…”

Section: Prior Workmentioning

confidence: 99%

DomainKeys Identified Mail (DKIM) Service Overview

Hansen¹,

Hallam-Baker²,

Crocker³

2009

View full text Add to dashboard Cite

show abstract

“…MARID is also based on DNS and can be regarded as a distributed whitelist of authorized MTAs. Multiple MARID drafts have been proposed in which SPF [Wong and Schlitt 2006], Sender ID [Lyon and Wong 2004], and DomainKeys [Delany 2006] have been deployed in some places.…”

Section: Recipient-based Techniquesmentioning

confidence: 99%

Thwarting E-mail Spam Laundering

Xie

Yin

Wang

2008

ACM Trans. Inf. Syst. Secur.

View full text Add to dashboard Cite

Laundering e-mail spam through open-proxies or compromised PCs is a widely-used trick to conceal real spam sources and reduce spamming cost in the underground e-mail spam industry. Spammers have plagued the Internet by exploiting a large number of spam proxies. The facility of breaking spam laundering and deterring spamming activities close to their sources, which would greatly benefit not only e-mail users but also victim ISPs, is in great demand but still missing. In this article, we reveal one salient characteristic of proxy-based spamming activities, namely packet symmetry, by analyzing protocol semantics and timing causality. Based on the packet symmetry exhibited in spam laundering, we propose a simple and effective technique, DBSpam, to online detect and break spam laundering activities inside a customer network. Monitoring the bidirectional traffic passing through a network gateway, DBSpam utilizes a simple statistical method, Sequential Probability Ratio Test, to detect the occurrence of spam laundering in a timely manner. To balance the goals of promptness and accuracy, we introduce a noise-reduction technique in DBSpam, after which the laundering path can be identified more accurately. Then DBSpam activates its spam suppressing mechanism to break the spam laundering. We implement a prototype of DBSpam based on libpcap, and validate its efficacy on spam detection and suppression through both theoretical analyses and trace-based experiments.

show abstract

Sender ID: Authenticating E-Mail

Cited by 53 publications

References 3 publications

Touring DNS Open Houses for Trends and Configurations

Touring DNS Open Houses for Trends and Configurations

DomainKeys Identified Mail (DKIM) Service Overview

Thwarting E-mail Spam Laundering

Contact Info

Product

Resources

About