[Asrg] The Solution To Spam - The First Response
2003-06-27 20:49:40
My responses are in the body of the message and I will reply to all posts
through one large post.
This post refers to the 'GIEIS' system shown here at:
http://homepage.ntlworld.com/giza.necropolis
The document is under development and represents a VERY basic overview of
the system. Updates will be made to clearly demonstrate the system
including algorythmic runthroughs. All comments, suggestions and weaknesses
will be addressed and concerns dealt with. These will be added to the final
system and prepared for an Internet Draft. The next step after that will be
for an RFC to be issued for the system.
Thankyou for your feedback, it has been great and very helpful,
Mark McCarron.
Email transmission has several stages, the majority are
transparent to the end user.
1. The Email server makes a request to begin transmitting by
logging onto the 'EAS'.
Don't you mean Email client?
Mark's response:
No. In that setup it was a spammer server attached through a proxy client.
But it just as easily could have been.
2. This is passed to the ISP's 'EAS' which, results in transmission of
a graphic with obscured word on it to the client.
3. The client enters the word into a prompt and the first email is sent
to the 'EAS'.
You make no statement about how often I have to respond to this graphic.
Or how any of this works with automatically generated messages. My mailbox
has hundreds of automated messages in it every day--generated by support
systems, cron tasks and other automated systems at various machines around
the internet. You can't cut that off.
Mark's response:
The graphic is for email clients such as Outlook express and Eudora, etc. A
new graphic is downloaded for each email. The system has no intention of
stopping legitimate email even automated systems. They just register with
an 'EAS' provider and all mail is sent through it. Legitimate businesses
will have to provide legal company registration details (such as reg.
company number, etc). They receive a special code, upon agreeing to a
legally binding 'Terms of Service agreement'. This code is then registered
with the 'GIEIS' central server. Any breach of the agreement, will result
in services being restricted to that code and any OTHER code held by that
company. That company will then have to raise the matter with both its ISP
and 'GIEIS''s centre. From there, several resolutions are possible. A fine
can be imposed for the breach, letters of apology to those involved, and in
severe cases completely stoppage of all email permanantly.
You keep talking about ISPs as though they are the only people who run mail
servers. You are describing a central database that needs to manage
information about millions of mail servers from countries around the world.
It has to have a dispute mechanism for complaints, and it has the power
to put any of those companies out of business. What government or company
would cede that kind of control to an unregulated organization? Also, you
have a huge loophole in non-commercial mailing lists. What keeps spammers
from repeatedly signing up as non-commercial mailing lists, sending out
millions of messages, and then creating a new list. Additionally, you have
vastly underestimated the cost and infrastructure requirements if you think
you are going to have money left over.
Mark's response:
Excellent points. Let's deal with the first one, there is millions of mail
servers in the world, however, all these mail servers have one thing in
common, they are linked to the internet backbone via some form of ISP. This
is why I am referring to ISPs. Therefore, we take this common point and
utilise it. They must register their server with their ISP's 'EAS' and it
registers it with 'GIEIS'. Straight-forward enough. There will be a full
dispute mechanism between all involved parties and the system will be an
independant body. If set up in partnership with the largest email and ISP
providers, then the rest of the industry would be assured of its reputation,
furthermore, the system must operate within legal boundries. Mailing lists
must be associated with a bonafide website, also they must contact 'GIEIS'
directly for setup. A credit card will be required and a $1 (£1) charge
will be made to it. Also, a mailing adress and telephone contact
information would be required. They will receive a written copy of the
'Terms of Service' which they must sign and send back to 'GIEIS'. Upon
reception 'GIEIS' will implement the account with their ISP. The emails
then sent will be analysed by heuristics. Each message will also be parsed
for HTML code, such as IMAGE tags and jpg, bmp images. As the majority of
mailing systems use either ASCII or UNICODE text only, spam can be detected,
blocked and the offender's credit card billed with a fine. I have not
placed estimates on the cost of implementation. The industry is loosing $12
Billion a year, even if the partnership spent $1 Billion per year (an
outragous amount) they would still be saving $11 Billion. The 'beancounter'
(accountants) would love that.
And of course, it suffers from the standard adoption system. Until the
majority of the world is using the system, you can't block email that
doesn't use it. Therefore early adopters have to suffer through the major
pain of using the system, but get no benefit.
Mark's response:
True. However, there will most likely be a period of introduction, for
example 6 months. Then there will be a D-Day from which point, the system
becomes exclusive. This will force the rest of the industry to adopt or
face not being able to communicate with other networks. The result of
non-compliance would be the loss of their customer base.
You missed a couple:
It locks out the seriously visually impaired.
There is no part of this concept, nor in the combination,
that is "new" in the sense that it hasn't been
raised previously.
Mark's response:
This is addressed in the FAQ. There are several methods to help both the
blind and severely visually impaired. We have not forgot about this highly
important client base. Such as a simple puzzle in brail, something that
would be difficult to automate for but simple enough for a human to do.
Mark McCarron.
_________________________________________________________________
Get Hotmail on your mobile phone http://www.msn.co.uk/msnmobile
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg
<Prev in Thread] |
Current Thread |
[Next in Thread>
|
- [Asrg] The Solution To Spam - The First Response,
Mark McCarron <=
|
|
|