[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Asrg] Consent Proposal

First of all take a look a the group's charter (http://www.irtf.org/charters/asrg.html). As the charter states we are seeking to define an overall consent framework and fit in all the different spam proposals into it. The proposal below was put forth to solicit opinions and ideas from people on consent in general and the consent framework in particular.

Yakov

At 01:20 AM 6/30/2003 +0000, Mark McCarron wrote:

Yakov,

This system is very similar, in fact almost identical, to the current one employed by Hotmail. It is not effective in eliminating spam, the end user still recieves it and has to deal with it. Also, it does not address the main issue about spam and that is the roughly 30% band-width absorbed across the Internet by it. All this seems to do is sort it at the recieving end.

I also read something about a confirmation being sent back from the server, this is just an adaptation of challange response.

It also does not address the issue of spammer's who use their own mail servers.
Can you clear any of these problems up?

Mark McCarron.


> > > > -----Original Message-----
> > > > From: Yakov Shafranovich [mailto:research@solidmatrix.com]
> > > > Sent: Thursday, June 26, 2003 11:23 AM
> > > > To: asrg@ietf.org
> > > > Subject: [Asrg] Consent Proposal
> > > >
> > > >
> > > > I would like to provide a generic proposal for
> > consent-based system
> > > > as per
> > > > charter:
> > > >
> > > > 1. Users and/or ISP define rules and filters to=20
filter incoming=20
> > > > email. Rules/filters are decided by end users and ISPs,
> > and are not
> > > > mandated.
> > > > Every user/ISP can define its own policies ranging=20
from banning=20
> > > > all email not digitally signed to blocking HTML.
> > > > 2. For each email user, the MUA or the ISP maintains a
> > > > whitelist of trusted
> > > > senders, blacklist of blocked senders and a graylist of
> > > > unknown senders.
> > > > Whitelisted senders go the inbox, graylisted senders go to
> > > > the bulk folder,
> > > > and blacklisted senders are either in the spam folder or
> > > > erased. 3. Whitelists are not only a list of email addresses
> > > > of trusted senders,
> > > > but to avoid sender spoofing also have additional features
> > > > such as digital
> > > > signatures, certificates, passwords, tokens, etc.
> > > > 4. Additional automatic whitelist rules are defined as such
> > > > email from
> > > > trusted senders (e.g. Habeas) is automatically goes to the
> > > > inbox unless
> > > > blacklisted, etc. C/R systems are also integrated and upon
> > > > receiving a
> > > > positive response automatically whitelist the sender.
> > > > 5. Additional automatic blacklist rules are defined such as
> > > > email coming
> > > > from known open relays is blocked.
> > > > 6. Whitelists, graylists and blacklists are stored hashed or
> > > > encrypted to
> > > > protect privacy.
> > > >
> > > > Any thoughts?
> > > >
> > > > Yakov
_________________________________________________________________
Use MSN Messenger to send music and pics to your friends http://www.msn.co.uk/messenger


_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg