weemail (was Proposal to define a simple architecture ...)

At 01:28 08/09/03, Keith Moore wrote:

there are a lot of ways to solve the spam problem that will work if"everybody does it my way." so far, nobody has figured out how to imposetheir will on the rest of the net.


True.

As you may know Intlnet is a old non-prof oriented toward community networksupport. I though we could publish drafts documenting our proposedsolutions. I found we cannot foot the cost of such worthless debates as younote it. So we will try to gather all our needs (DNS, IPv6, mail, security,etc.) and used words and concepts into a one single "Intlnet-needsinformation draft". We hope this way we might help presenting worked onusers demands, and worked out yet inexpert users solutions. In return wehope we will get expert comments from IETF.

We have a major spam problem and a solution I wish to discuss here as itfits the mission of no IETF group as I understand it (this for Harald).

First for you to understand, we use the word "ULD" for "User Level Domain".This is a community upper (TLD or SLD) level domain. This helps making theconcept more generic. An ULD is defined as a community space of naming,trust, exchanges and services. It can be designed as a DNS "virtual zone".A virtual zone results user defined common characteristics used in a DNSfile generator. The DNS files are then set-up to support it. So an ULD mayspan several layers or TLD or be a restriction of a zone.

One of our Members is to develop an ULD project implying millions of mailaddresses in a primary spam target thematic area. They do not want to buythousands of terra byte mail severs with huge bandwidth to filter or carryan expected 90/95% spam traffic.


So we devised weemail, I would thank you to review.

"Mail" was defined by a Programing Software Note 49 of Louis Pouzin end of1964 and first programmed by Tom Van Vleck. He did it in adding text (firston top of) to the recipient mailbox understand as a file. It followed thepostal model, Louis is very keen of (datagram, zones). I come from adifferent experience and asked Tom and Louis why they did not just transferindexes as I did when developing my own solution 20 years after for a QNXbased network OS. Louis asked by return if I meant "URL" today? and Tomsaid he developed the pointer concept, that it worked the same.Hedocumented the same problems I met. But on the systems he then used(Tandem) the needed demon was a complex issue (while it was a QNX adman wassimple).

So we started discussing the ways, the cons and pros. We are now lookingfor a large provider to help the development phase, run it experimentallyand then commercially.

1. we name it "web-e-mail" or "wee mail", so weemail. Thehttp://weemail.org site is just in French right now. By lack of Englishcompetence? We should also update the information there.

2. The SMTP protocol is fully respected. There is NO change whatsoever inthe network itself. Only possible modules to be added. We may want to speedsome processes in telling in the header that a mail is a weemail. We thinkof a Mail-ID format not to change SMTP.

3. The mail text is only a weemail header (weeheader) made of the frist fewlines, all starting with "weeXXX:" where XXX is a parameter freely definedat ULD level. Everything more is supposed to be stripped off somewhere onthe path. No attachment, no worms.

4. The basic idea is to send "weeURL: xxx://abc.def.gh?cgi...=zzz" as amain or only weeheader information. Some more information of class(community of senders) or groups (community of sendees), classing,priority, language, type of information, protection and intensificationetc. can also be passed in the weeheader.

5. This means that the only modifications are at the mail agent. To send aweemail it sends the weeheader and stores the message at the URL. To read aweemail (if the sendee wants it) it retrieves the messages at the URL.

6. As noted this kind of solution may dramatically increase the number ofspam attempts. But:

- the message must be actually stored at an identified URL what ismore complex and compromising than sending an SMTP burst. We advocate anIPv6 address concatenating routing and addressing addresses with a singleHost ID per host, facilitating the tracking of the Spaming hosts.

- determining what is spam is a human decision. To track trappedcopies may be complex. We think that a spammer needs to send 5 times moremessages if the text stays only one hour in line (delay of mail propagationand short time for an equivalent population to retrieve it). This will makespam more costly and more noticeable. But also it will make spam far moreeasily identified though its weeURL an information easy to get and track.We expect spammers to harp on URLs, but they will need to keep a pattern(Domain name, IP, etc.) permitting to identify and report them. We intendto experiment to that end two new propositions : OPES for filtering andreacting and RID-DOS for inter operator real time alarms and reacting..

- as you note - we need to impose a solution - to impose it on aconsistent protected space. To that end only weemail will be accepted inevery ULD mailboxes. Weemails will have to initiate from ULD dolman namesand concern ULD weeURLs or partnering URLs..

7. The development as we see it consists first in a prototype mail agentand in proposing the acquired experience to main agent developers. Then weneed to update MTA with a weemail module stripping everything from theweemails except the weeheader. Then we need to give an URL to every mailbox(this is a policy of the ULD to replace Whois by the web and get anuniversal directory). Eventually we expect to use weemail servers made of awebservice dialoguing with the mail agents. The last step could be tosometimes use OPES and OCP as a fast alternative to SMTP when an end to endservice can be provided.

8. as users we see several additional netix advantages (we name "netix" theuser network operating system like management). We can freely use anydocument format and intensification system with more flexibility than IRMand be compatible with many other architectures through simple messagepassing solutions (weeENTRIES in the header). The mail-agent/weemail serverrelation might be easily extended to support extended (global community)services. May be all could be made OPES directly running OCP.

jfc