trusted-forwarders.org is such a whitelisting service, and
it seems to
work.
This may be a fine list during early development or beta testing. But
are you suggesting this needs to be a permanent part of the MARID
solution? Based on the experience of similar list providers, I would
guess that both DDOS attacks and litigation will follow.
Bring 'em on.
Harry is right about there being issues likely to appear down the line,
acting as an accreditation authority with the world depending on you
is going to be a serious business requiring deep knowledge of the
practices issues and major capital backing.
But these problems have already been solved for PKI. and DDoS is a
constant issue for the DNS root servers.
What would be interesting to know is the size of the
trusted-forwarders.org list. Which incidentally is not a registered
DNS name.
I think that despite the arguments there is basic agreement here that:
MARID + nothing = 100% accurate authentication pass
80%? accurate authentication fail
MARID + Accreditation = 95%+ accurate whitelist
improved accuracy authentication fail
MARID + Proof of Consent = 100% accurate authentication fail in cases
that forwarder/mailing list supports POC
I realize here that really there should be two axis tracked here, there
is the accuracy of the decision and there is the coverage of the
technology.
Time for an Excell spreadsheet and some graphs.
Phill