Email Authentication Will Help Fight Fraud and Spam

Aug 09, 2004

Sendmail, Inc., the global provider of electronic message management solutions, has completed initial benchmark testing of the DomainKeys email authentication technology introduced by Yahoo!. The findings show that, even in its early stages, DomainKeys has minimal impact on email server performance, which should facilitate adoption of the technology across end-user organizations and service providers.

As a cryptographic-based technology, DomainKeys inserts a signature into every message, to allow receivers to verify the original sender of the message and guarantee that the message content has not been changed in transit. Sendmail's initial tests were designed to establish the impact of this approach on email server throughput. This test is the first in a series being conducted as part of the Sendmail Messaging Integrity Pilot Program, the goal of which is to accelerate testing, standardization and deployment of sender authentication technology on the Internet. As part of the program, Sendmail is also evaluating the survivability, end-user experience, deployability and security of the mainstream sender authentication schemes.

The test focused on the DomainKeys mail filter, the first implementation of the DomainKeys specification available on the Internet. The DomainKeys mail filter, also known as dk-milter, was developed by Sendmail and released as open source earlier this year. It plugs directly into both the open source sendmail MTA and commercial Sendmail solutions.

Designed and executed by Sendmail's Professional Services, the test found that performance impact was well within expected norms, with an approximate CPU overhead of 7.8% on outbound traffic and 15.2% on inbound traffic. These initial results have shown that the cryptographic technology used in DomainKeys offers a tenfold performance increase over typical milter-based spam filters. On a properly tuned Linux server, it was demonstrated that the open source sendmail MTA and the DomainKeys milter could deliver well over one hundred messages per second. This pace far outstrips the throughput of most common spam detection engines and shows that authentication should not cause a noticeable bottleneck for mail delivery.

"If email authentication technology is to be widely adopted, it must have minimal impact on productivity and system performance," said Eric Allman, CTO at Sendmail. "These are impressive results for early code. They suggest that DomainKeys will be more efficient than current methods of filtering and evaluating all messages."

Full details of the DomainKeys mail filter performance test, including system tuning parameters, test network configuration and links to all open source code are available from the dk-milter page at sendmail.net/dk-milter/. More information on the Sendmail Messaging Integrity Pilot Program, and other email authentication resources, is available at sendmail.net/.

About the Messaging Integrity Pilot Program

Sendmail is actively seeking participants to test the next generation in anti-fraud and anti-spam technologies as a part of Sendmail's Messaging Integrity Pilot Program. Testing will involve assessing the compatibility of various sender authentication protocols with existing email infrastructure elements such as MTAs, forwarding services, and mail user clients.

The goal is to test authentication with as many of the commonly used packages as possible to identify potential issues in the sender-recipient path that could prevent successful authentication of messages. This testing will validate that these new technologies really work in a complex network systems environment such as the Internet. These technologies can be adopted easily and senders and recipients can be secure in the knowledge that the infrastructure that they depend upon is ready for sender authentication. For more information on the Messaging Integrity Pilot Program, visit www.sendmail.net.

Source: Sendmail Inc.

Explore further: Hackers charged in software theft from US army, others

add to favorites email to friend print save as pdf

Related Stories

What's PayPal's first solo move?

44 minutes ago

PayPal's impending split from long-time partner eBay Inc. will ratchet up its appeal to online retail competitors such as Amazon.com and give it the freedom to aggressively take on new mobile pay challeng ...

US-India to collaborate on Mars exploration

44 minutes ago

The United States and India, fresh from sending their own respective spacecraft into Mars' orbit earlier this month, on Tuesday agreed to cooperate on future exploration of the Red Planet.

Swift mission observes mega flares from a mini star

59 minutes ago

On April 23, NASA's Swift satellite detected the strongest, hottest, and longest-lasting sequence of stellar flares ever seen from a nearby red dwarf star. The initial blast from this record-setting series ...

Recommended for you

AOL to feed more video, news to Microsoft's MSN

5 hours ago

AOL will provide Microsoft's MSN with more video and additional news stories from popular sites such as The Huffington Post and TechCrunch in an expansion of a deal aimed at selling more digital advertising.

First self-contained step dimming LED tube

8 hours ago

Samsung Electronics today introduced the industry's first AC Direct step-dimming LED linear replacement for T8 and T12 fluorescent tubes at the National Electrical Contractors Association (NECA) Convention ...

User comments : 0