[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Asrg] Consent protocols - was E-postage

To: John Levine <asrg at johnlevine.com>
Subject: [Asrg] Consent protocols - was E-postage
From: David Maxwell <david at vex.net>
Date: Thu, 29 Apr 2004 14:04:03 -0400
Cc: asrg at ietf.org
In-reply-to: <20040429063821.6203.qmail@xuxa.iecc.com>
List-archive: <https://www1.ietf.org/mail-archive/working-groups/asrg/>
List-help: <mailto:asrg-request@ietf.org?subject=help>
List-id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-post: <mailto:asrg@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>,<mailto:asrg-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>,<mailto:asrg-request@ietf.org?subject=unsubscribe>
References: <16528.27844.324796.238684@world.std.com> <20040429063821.6203.qmail@xuxa.iecc.com>
Sender: asrg-admin at ietf.org
User-agent: Mutt/1.4.2i

On Thu, 29 Apr 2004, John Levine wrote:
> So let's think about rate limiting or deterring senders.  Perhaps I'm
> suffering from a failure of imagination, but I don't see useful rate
> limiting without some cooperation from the recipients.  This is for
> two reasons: one is that recipients don't want to rate limit the mail
> they want, and the other is that without some way for the recipients
> to audit the rate limiting, naughty senders will lie and claim they're
> rate limiting when they aren't.

This sounds like it's begging for a consent protocol implementation.

Sender: Hello, I have mail for you.
Recip: I have no record of talking to you before. I'll accept 1msg/h
Sender: Understood. 1msg/h. Here's a msg.

Now several things can happen in the state graph.

a. Sender has no more msgs to devlier anyway.
b. Sender has more, and follows Recip's desired 1/h
	- At some point, Recip decides that Sender has been faithful,
		and may be allowed a higher rate.
c. Sender has more, and ignores Recip's desired 1/h
	- Sender is blacklisted.

Optionally:

d. Sender has more, and requests a higher rate allowance by providing
	an accreditation, hashcash, 'introduction protocol' referral ID,
	etc.
e. Sender provides a one-time, or reusable key that was provided out of
	band by recipient - i.e. when signing up for a mailing list -
	which entitles Sender to a higher rate limit.

Well known senders gradually receive high rate limits. New spammer
domains recieve low limits, and are blacklisted due to content (possibly
by distributed blacklists) before they can deliver a significant amount
of spam.

A variation of this scheme could be used between users and their ISP.

P.S. My idle speculation is that you might be able to implement this
without changing SMTP, by using SIP to arrange the connections.

-- 
David Maxwell, david@vex.net|david@maxwell.net -->
All this stuff in twice the space would only look half as bad!
					      - me

_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

Follow-Ups:
- [Asrg] Re: Consent protocols - was E-postage
  - From: John Levine

References:
- Re: [Asrg] (no subject)
  - From: Barry Shein
- [Asrg] E-postage from first principles
  - From: John Levine

Prev by Date: [Asrg] Re: Consent protocols - was E-postage
Next by Date: [Asrg] Re: Consent protocols - was E-postage
Previous by thread: Re: [Asrg] 3 (Message Verification) - Viability of hashcash-based signatures (was: E-postage from first principles)
Next by thread: [Asrg] Re: Consent protocols - was E-postage
Index(es):
- Date
- Thread