ietf-asrg
[Top] [All Lists]

[Asrg] 6. Proposals - Sender Authentication - DNS + PKI

2003-11-22 17:11:22
From the following article:

http://www.internetwk.com/breakingNews/showArticle.jhtml?articleID=16400308

-------------------------
"One organization working on sender-authentication mechanism is a commercial alliance comprising the biggest consumer e-mail providers: Microsoft, Yahoo, America Online and Earthlink."

"Under the proposal, ISPs and any other organization with their own domain name system (DNS) would use a private key in their mail servers to place an encrypted code in the header of each piece of outgoing mail. When the mail arrived at its destination, the receiving mail server would get the sender's public key from its DNS server to decrypt the header, thus verifying the message's origin.

If the message is spam, or even a legitimate marketing message the receiver doesn't want, then email from that DNS can be blacklisted, or automatically blocked. "Once you have identity, then you can establish reputation and trust," Libbey said. "Those are really important concepts in e-mail."

Yahoo has done some proof-of-concept testing of the idea internally, but the technology is still at the early stages of development and no timetable for general release has been set."
-------------------------


_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg