Email Authentication Will Help Fight Fraud and Spam

Aug 09, 2004

Sendmail, Inc., the global provider of electronic message management solutions, has completed initial benchmark testing of the DomainKeys email authentication technology introduced by Yahoo!. The findings show that, even in its early stages, DomainKeys has minimal impact on email server performance, which should facilitate adoption of the technology across end-user organizations and service providers.

As a cryptographic-based technology, DomainKeys inserts a signature into every message, to allow receivers to verify the original sender of the message and guarantee that the message content has not been changed in transit. Sendmail's initial tests were designed to establish the impact of this approach on email server throughput. This test is the first in a series being conducted as part of the Sendmail Messaging Integrity Pilot Program, the goal of which is to accelerate testing, standardization and deployment of sender authentication technology on the Internet. As part of the program, Sendmail is also evaluating the survivability, end-user experience, deployability and security of the mainstream sender authentication schemes.

The test focused on the DomainKeys mail filter, the first implementation of the DomainKeys specification available on the Internet. The DomainKeys mail filter, also known as dk-milter, was developed by Sendmail and released as open source earlier this year. It plugs directly into both the open source sendmail MTA and commercial Sendmail solutions.

Designed and executed by Sendmail's Professional Services, the test found that performance impact was well within expected norms, with an approximate CPU overhead of 7.8% on outbound traffic and 15.2% on inbound traffic. These initial results have shown that the cryptographic technology used in DomainKeys offers a tenfold performance increase over typical milter-based spam filters. On a properly tuned Linux server, it was demonstrated that the open source sendmail MTA and the DomainKeys milter could deliver well over one hundred messages per second. This pace far outstrips the throughput of most common spam detection engines and shows that authentication should not cause a noticeable bottleneck for mail delivery.

"If email authentication technology is to be widely adopted, it must have minimal impact on productivity and system performance," said Eric Allman, CTO at Sendmail. "These are impressive results for early code. They suggest that DomainKeys will be more efficient than current methods of filtering and evaluating all messages."

Full details of the DomainKeys mail filter performance test, including system tuning parameters, test network configuration and links to all open source code are available from the dk-milter page at sendmail.net/dk-milter/. More information on the Sendmail Messaging Integrity Pilot Program, and other email authentication resources, is available at sendmail.net/.

About the Messaging Integrity Pilot Program

Sendmail is actively seeking participants to test the next generation in anti-fraud and anti-spam technologies as a part of Sendmail's Messaging Integrity Pilot Program. Testing will involve assessing the compatibility of various sender authentication protocols with existing email infrastructure elements such as MTAs, forwarding services, and mail user clients.

The goal is to test authentication with as many of the commonly used packages as possible to identify potential issues in the sender-recipient path that could prevent successful authentication of messages. This testing will validate that these new technologies really work in a complex network systems environment such as the Internet. These technologies can be adopted easily and senders and recipients can be secure in the knowledge that the infrastructure that they depend upon is ready for sender authentication. For more information on the Messaging Integrity Pilot Program, visit www.sendmail.net.

Source: Sendmail Inc.

Explore further: First of four Fukushima reactors cleared of nuclear fuel

add to favorites email to friend print save as pdf

Related Stories

Recommended for you

Off-world manufacturing is a go with space printer

3 hours ago

On Friday, the BBC reported on a NASA email exchange with a space station which involved astronauts on the International Space Station using their 3-D printer to make a wrench from instructions sent up in ...

Cadillac CT6 will get streaming video mirror

4 hours ago

Cadillac said Thursday it will add high resolution streaming video to the function of a rearview mirror, so that the driver's vision and safety can be enhanced. The technology will debut on the 2016 Cadillac ...

Sony faces 4th ex-employee lawsuit over hack

4 hours ago

A former director of technology for Sony Pictures Entertainment has sued the company over the data breach that resulted in the online posting of his private financial and personal information.

User comments : 0

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.