ietf-asrg
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Asrg] 2. Improving Blacklists and Reputation Services

2004-02-09 15:54:20
from [Yakov Shafranovich] [Permanent Link] 
Hallam-Baker, Phillip wrote:
Correct which is what the current blacklists do. It is upto you to figure out whose opinions you trust. An accrediation service is vouching for someone, a reputation service is stating an opinion of someone's reputation. The two things are different. 


Absolutely not. An accreditation service is simply stating a fact, any fact
at all about the subject.
Ok, I will accept that (although somehow whenever I think "accreditation" I am getting a knee-jerk reaction that it will automatically cost money). 

So what we have is as follows (I think):
1. MTA identity.
2. Domain identity.
3. Sender's identity.
And now different accreditation services that provide facts about that subject in two situtations: 1. The sender/MTA/domain explicitely states that it is accredited with a specific service. 2. The receiver uses an accreditation service to obtain information such as reputation about a specific subject without that subject telling the receiver anything.
Several things bother me here. First of all, the MTA, sender and sender's domain are different identities and require different mechanisms. The MTA might want to advertise accreditation with ESMTP or DNS, while the domain or sender might want to do so via an email header.
Second, checking multiple accreditation authorities with a more complicated syntax slows down the filtering process.
Third, checking accreditation on per sender basis slows things down even more and allows for a DDOS attack against the accredidation authority and the receiver. 


The whole point of introducing the term was to serve as a more illustrative
name for what in SAML are called 'attribute assertions'.
An interesting thought - can we use SAML for exchanging reputation and accreditation info? 

Yakov
-------
Yakov Shafranovich / asrg <at> shaftek.org
SolidMatrix Technologies, Inc. / research <at> solidmatrix.com
"One who watches the wind will never sow, and one who keeps his eyes on the clouds will never reap" (Ecclesiastes 11:4) 
-------

_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Asrg] 2. Improving Blacklists and Reputation Services, Yakov Shafranovich
Next by Date:  [Asrg] 3b. SMTP Session Verification - Marking MTAs in rDNS - MTA MARK, Yakov Shafranovich
Previous by Thread:  RE: [Asrg] 2. Improving Blacklists and Reputation Services, Hallam-Baker, Phillip
Next by Thread:  RE: [Asrg] 2. Improving Blacklists and Reputation Services, Hallam-Baker, Phillip
Indexes:  [Date] [Thread] [Top] [All Lists]