[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Asrg] Accreditation Mechanism Proposal

To: "Mark E. Mallett" <mem at mv.mv.com>
Subject: Re: [Asrg] Accreditation Mechanism Proposal
From: Yakov Shafranovich <research at solidmatrix.com>
Date: Thu, 18 Mar 2004 12:55:14 -0500
Cc: "Hallam-Baker, Phillip" <pbaker at verisign.com>, asrg at ietf.org
In-reply-to: <20040318163751.GB12873@iridium.mv.net>
List-archive: <https://www1.ietf.org/mail-archive/working-groups/asrg/>
List-help: <mailto:asrg-request@ietf.org?subject=help>
List-id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-post: <mailto:asrg@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>,<mailto:asrg-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>,<mailto:asrg-request@ietf.org?subject=unsubscribe>
Organization: SolidMatrix Technologies, Inc.
References: <C6DDA43B91BFDA49AA2F1E473732113E0A19E4@mou1wnexm05.vcorp.ad.vrsn.com> <20040318163751.GB12873@iridium.mv.net>
Sender: asrg-admin at ietf.org
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.6) Gecko/20040113

Mark E. Mallett wrote:

On Wed, Mar 17, 2004 at 07:23:32AM -0800, Hallam-Baker, Phillip wrote:

A couple of random remarks from a very cursory reading:
There is no difficulty in ensuring that accreditation providers are accountable to email recipients. An accreditation authority that provides incorrect accreditation will soon be ignored.
Pretty bold assertion :-)
It hasn't held true with some DNSBL services.  Among other reasons is
the wide variety of definitions of "incorrect," as well as extremely
polar opinions about listing criteria, remedies, responsibility, et al.

The key difference from blacklists is that blacklists do not ask ISPs whether they want to be listed. Here, the sender actively goes to a provider and signs up, and then indicates his accredidation in some protocol.

My issue with this is something else - if all of this becomes prevalent enough, aren't we essentially raising a barrier of entry for new domains on the Internet? Doesn't such accredidation service essentially become a gatekeeper for the Internet?

Yes, I read Microsoft's proposals about different types of tricks for different domains, for example hash cash-type puzzles for smaller domains in lieu of accreditation. I am still not convinced that a given ISP will bother with supporting both accreditation and hash cash, they just might take the easy way out and only support accreditation services.

Yakov

_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

Follow-Ups:
- Re: [Asrg] Accreditation Mechanism Proposal
  - From: Seth Breidbart
- Re: [Asrg] Accreditation Mechanism Proposal
  - From: Mark E. Mallett

References:
- [Asrg] Accreditation Mechanism Proposal
  - From: Hallam-Baker, Phillip
- Re: [Asrg] Accreditation Mechanism Proposal
  - From: Mark E. Mallett

Prev by Date: Re: [Asrg] Accreditation Mechanism Proposal
Next by Date: RE: [Asrg] Accreditation Mechanism Proposal
Previous by thread: Re: [Asrg] Accreditation Mechanism Proposal
Next by thread: Re: [Asrg] Accreditation Mechanism Proposal
Index(es):
- Date
- Thread