Presentation is loading. Please wait.

Presentation is loading. Please wait.

Message Authentication Signature Standards (MASS) BOF Jim Fenton Nathaniel Borenstein.

Published byConrad Bradford Modified over 9 years ago

Similar presentations

Presentation on theme: "Message Authentication Signature Standards (MASS) BOF Jim Fenton Nathaniel Borenstein."— Presentation transcript:

1 Message Authentication Signature Standards (MASS) BOF Jim Fenton Nathaniel Borenstein

2 MASS BOF - Motivation Deny spammers/phishers/etc. the ability to send mis-identified mail Authorization based on IP address is being addressed by MARID Other approaches based on signatures in messages are out-of-scope for MARID

3 MASS relationship to MARID MARID: –Authorization based on IP address –Authorization records stored in DNS –Cryptographic approaches out-of-scope MASS: –Message authentication based on cryptographic signature –Authorization of key (and often key itself) May be stored in DNS May be a separate server

4 Potential commonalities between MASS and MARID Definition of Purportedly Responsible Address (PRA) Message marking to indicate successful/unsuccessful verification Eventual use of accreditation infrastructure –Although what’s being accredited may differ

5 Representative proposals DomainKeys –draft-delany-domainkeys-core-00 Identified Internet Mail –draft-fenton-identified-mail-00 E-mail Postmarks –http://www.lessspam.org/EmailPostmarks.pdf Entity-to-entity S/MIME –draft-hallambaker-entity-00 MTA Signatures –http://www.elan.net/~william/asrg/mta_signatures.htmlhttp://www.elan.net/~william/asrg/mta_signatures.html Bounce Address Tag Validation –http://brandenburg.com/specifications/draft-crocker-marid-batv-00- 06dc.htmlhttp://brandenburg.com/specifications/draft-crocker-marid-batv-00- 06dc.html

6 Some potential issues Signature encapsulation –Signatures in headers –S/MIME Key management Canonicalization –What’s required to avoid signature breakage? –Treatment of headers Behavior through mailing lists

7 Where and when? Thursday, August 5 9-11:30 am (some agendas say 9:30) Marina 2 Mailing list: –Archive at http://www.imc.org/ietf-mailsig/

Download ppt "Message Authentication Signature Standards (MASS) BOF Jim Fenton Nathaniel Borenstein."

Similar presentations

1 Mailing list software in the war against spam May 2005 Serge Aumont serge.aumont cru.fr.

1 Mailing list software in the war against spam May 2005 Serge Aumont serge.aumont cru.fr.
Introduction to the Anti-Spam Research Group (ASRG) Presented by Yakov Shafranovich, ASRG Co-chair NIST Spam Technology Workshop Gaithersburg, Maryland,

Introduction to the Anti-Spam Research Group (ASRG) Presented by Yakov Shafranovich, ASRG Co-chair NIST Spam Technology Workshop Gaithersburg, Maryland,
Authentication Approaches Phillip Hallam-Baker VeriSign Inc.

Authentication Approaches Phillip Hallam-Baker VeriSign Inc.
DNSSEC & Email Validation Tiger Team DHS Federal Network Security (FNS) & Information Security and Identity Management Committee (ISIMC) Earl Crane Department.

DNSSEC & Validation Tiger Team DHS Federal Network Security (FNS) & Information Security and Identity Management Committee (ISIMC) Earl Crane Department.
How Will Authentication Reduce Global Spam? OECD Anti-Spam Task Force Pusan – September, 2004 Dave Crocker Brandenburg InternetWorking OECD Anti-Spam Task.

How Will Authentication Reduce Global Spam? OECD Anti-Spam Task Force Pusan – September, 2004 Dave Crocker Brandenburg InternetWorking OECD Anti-Spam Task.
© 2007 Convio, Inc. Implementation of Sender ID Bill Pease, Chief Scientist Convio.

© 2007 Convio, Inc. Implementation of Sender ID Bill Pease, Chief Scientist Convio.
D. CrockerIntroduction to BATV 1 MIPA Bounce Address Tag Validation (BATV) “Was use of the bounce address authorized?” D. Crocker Brandenburg InternetWorking.

D. CrockerIntroduction to BATV 1 MIPA Bounce Address Tag Validation (BATV) “Was use of the bounce address authorized?” D. Crocker Brandenburg InternetWorking.
Sender ID Drafts Jim Lyon Microsoft Corporation 4 August 2004.

Sender ID Drafts Jim Lyon Microsoft Corporation 4 August 2004.
Chapter 5 Network Security Protocols in Practice Part I

Chapter 5 Network Security Protocols in Practice Part I
1 Aug. 3 rd, 2007Conference on Email and Anti-Spam (CEAS’07) Slicing Spam with Occam’s Razor Chris Fleizach, Geoffrey M. Voelker, Stefan Savage University.

1 Aug. 3 rd, 2007Conference on and Anti-Spam (CEAS’07) Slicing Spam with Occam’s Razor Chris Fleizach, Geoffrey M. Voelker, Stefan Savage University.
Secure E-mail Systems.

Secure Systems.
DomainKeys Identified Mail (DKIM): Introduction and Overview Eric Allman Chief Science Officer Sendmail, Inc.

DomainKeys Identified Mail (DKIM): Introduction and Overview Eric Allman Chief Science Officer Sendmail, Inc.
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 30 Internet Security.

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 30 Internet Security.
Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.

Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.
DirectAccess is an Enterprise Solution: No support for Windows 7 Professional Requires two consecutive public IP addresses Cannot NAT to the DirectAccess.

DirectAccess is an Enterprise Solution: No support for Windows 7 Professional Requires two consecutive public IP addresses Cannot NAT to the DirectAccess.
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 19 Domain Name System (DNS)

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 19 Domain Name System (DNS)
Application of Attribute Certificates in S/MIME Greg Colla & Michael Zolotarev Baltimore Technologies 47 th IETF Conference Adelaide, March 2000.

Application of Attribute Certificates in S/MIME Greg Colla & Michael Zolotarev Baltimore Technologies 47 th IETF Conference Adelaide, March 2000.
Pro Exchange SPAM Filter An Exchange 2000 based spam filtering solution.

Pro Exchange SPAM Filter An Exchange 2000 based spam filtering solution.
INTRODUCTION Why Signatures? A uthenticates who created a document Adds formality and finality In many cases, required by law or rule Digital Signatures.

INTRODUCTION Why Signatures? A uthenticates who created a document Adds formality and finality In many cases, required by law or rule Digital Signatures.
DomainKeys Identified Mail (DKIM) D. Crocker ~ bbiw.net dkim.org  Consortium spec Derived from Yahoo DomainKeys and Cisco Identified Internet Mail  IETF.

DomainKeys Identified Mail (DKIM) D. Crocker ~ bbiw.net dkim.org  Consortium spec Derived from Yahoo DomainKeys and Cisco Identified Internet Mail  IETF.

Similar presentations

Ads by Google