Spam Solutions Group 7 Leo Leung Peter Gorzkowski Seema Yadav Tobby Mathew You’ve Got Mail!

HTML allows documents to be viewed … people needed to communicate … Development of Organization Use-employee interaction Organization Use-employee interaction Marketing Use-scams, ads, customers Marketing Use-scams, ads, customers Overview

Definition “ Unwanted s indiscriminately sent through various mailing lists to individuals and groups ” “ Unwanted s indiscriminately sent through various mailing lists to individuals and groups ”WHY?WHO? Solutions : eg: Brightmail and Spam Bully Outgoing Issue Affects PC/Network as Spam is also sent out Affects PC/Network as Spam is also sent out Viruses: MyDoom Viruses: MyDoom Incoming Issue Average American will get more than 2200 spam messages Average American will get more than 2200 spam messages and 3600 by 2007 and 3600 by 2007 Using 2 mins/day, 4400 mins=74 hours given up Using 2 mins/day, 4400 mins=74 hours given up HTML use for anti-filtering Spam - Overview

Users: SoftLandMark, FutureQuest Technique adoption learns from spam messages Self adjusting Anti-Spam – Comparison Spam Bully Clients: Avaya, eBay, MSN Decoy addresses RECEIVE spam Saving of $72,222 from loss of time due to spam Cost of $12, million users Brightmail Server

Spam –Problems False positives False positives safeguards safeguards rigorous accuracy standards rigorous accuracy standards Instant deployment of updates Instant deployment of updates Lost user productivity Resource depletion

Anti-Spam – Technical Description Pro’s : -at point entry -saves resources Con’s: - smaller organizations -some prefer no services running at gateway Pro’s: - reduced downtime -multiple services on one dedicated machine Con’s: - enough resources to run other services Pro’s: smaller organizations plug and play Con’s: multiple installations

Anti- Spam – Technical Description Anti- Spam – Technical Description Brightmail Protection - Probe Network - - Probe Network - World-largest network collects spam using over 2 million decoy addresses - BLOC – - BLOC – operations centers that collect mail from Probe Network and develop countermeasures “ new filter updates every 5 – 8 minutes ” Spam Bully Protection - Bayesian Filtering – - Bayesian Filtering – content based, self learning Common Modules - White lists and black lists – - White lists and black lists – specified by firms, organizations - Custom Rules – - Custom Rules – specified by users

Anti-Spam – Variations and Standard Bodies/ Organizations Brightmail Brightmail Anti- Spam Enterprise Edition Version 5.5 Brightmail Anti- Spam Service Provider Edition Brightmail Anti- Fraud Spam Bully Outlook Version ( ) Outlook Express Version ( ) Outlook Version ( Beta) Outlook Express Version ( Beta) 1.Coalition against unsolicited Commercial (ICAUCE) - not-profit, international organization which helps its members and media become aware of spam issues and how to deal with spam 2.Federal Trade Commission (FTC) - protect consumers and business from Internet scams 3.Internet Society (ISOC) - provides its members and users with information about Internet issues 4.SpamAbuse.org - They maintain a blacklist of companies that have been reported 5.SpamCon Foundation -spam fighting organization that provides its members and users with a blacklist of companies

NetBarrier: firewall protection, unused ports closed, not for the novice user SpamAssassin: heuristic testing, point earned vs. set limit, user friendly Spam Killer: 3 levels of protection-integrity analysis, heuristic detection, content filtering, minimal management, small scale purposes ideal Symantec Norton AntiSpam: custom filter, knowledge of this feature is required, foreign languages are not recognized, limited configurability SpamWatch for Eudora: self learning filter, ranking system, only available for Eudora paid users Anti-Spam – Alternatives AT THE GATEWAY: AT SERVER:

Summary & Questions?