Here’s a different Microsoft/Yahoo story

As usual, Microsoft is going its own way when it comes to fighting e-mail fraud. But the good news for corporate IT executives is that Microsoft’s preferred approach, known as Sender ID, works with the emerging industry standard, DomainKeys Identified Mail (DKIM), which is backed by Yahoo, Google and others. (Read a Q&A with a Yahoo executive on DKIM and beyond.)

Other stories on this topic
Microsoft's statement on Yahoo's rejection of its acquisition offer 2/11/2008
Microsoft says Yahoo snub 'unfortunate' 2/11/2008
Microsoft hints at Yahoo hostile takeover 2/11/2008
Powered by Inform

Sender ID requires ISPs and companies to publish Sender Policy Framework (SPF) records to identify their e-mail servers. SPF is an extension to the Simple Mail Transfer Protocol. 

Read the latest WhitePaper - Mobile Device Security: Securing the Handheld, Securing the Enterprise!

DKIM, which was developed by the Internet Engineering Task Force, uses mail transfer agents to cryptographically sign outbound mail and to check inbound mail for DKIM signatures.

Click to see: Chart of how companies are protecting their e-mail

Many organizations recommend adopting both Sender ID and DKIM. These include BITS, which represents the 100 largest U.S. financial institutions, and the Authentication and Online Trust Alliance (AOTA).

``We endorse Sender ID and DKIM as complementary,’’ says Craig Spiezle, chairman of AOTA. ``Combined, they really provide comprehensive protection.’’

Sender ID has been widely deployed, while DKIM deployments are just beginning. For example, PayPal deployed Sender ID in early 2007 and is now deploying DKIM.

AOTA reports that 52% of the top consumer-facing financial service brands are authenticating their e-mail through Sender ID or DKIM. In addition, 54% of Internet retailers are using one of these approaches to authenticate their e-mail. AOTA studied over 100 million e-mails sent by Fortune 500 brands over a five-month period.

Overall, 37% of Fortune 500 companies are using Sender ID or DKIM, the study found. This is a significant increase from two years ago, when less than 10% of the Fortune 500 were authenticating outbound e-mail., AOTA says.

``It’s not a Sender ID or DKIM issue in my mind,’’ Spiezle says. ``It’s really about how they can be jointly deployed to provide overlapping strength.’’

Despite the industry momentum around DKIM, Microsoft won’t commit to it.   

1 | 2 |  Next >
Recent News:
· McColo takedown: Vigilantism or Neighborhood Watch?
· Spam drop could boost Trojan attacks
· Hosting firm shutdown forces botnets to relocate
· ISP cut off from Internet after security concerns
· Spam plummets after hosting service shuttered
Site Map | Recent News | Related Sites

Copyright © 2006 EmailSafety.net - All Rights Reserved.