IETF Logo Mail Archive

[Asrg] DNS-based Email Sender Authentication Mechanisms: a Critical Review

Amir Herzberg <amir.herzberg@gmail.com> Sun, 24 May 2009 07:57 UTC

Return-Path: <amir.herzberg@gmail.com>
X-Original-To: asrg@core3.amsl.com
Delivered-To: asrg@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id F2D493A6DB8 for <asrg@core3.amsl.com>; Sun, 24 May 2009 00:57:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.184
X-Spam-Level:
X-Spam-Status: No, score=-0.184 tagged_above=-999 required=5 tests=[BAYES_40=-0.185, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id L-XMsy48wCbB for <asrg@core3.amsl.com>; Sun, 24 May 2009 00:57:31 -0700 (PDT)
Received: from mail-bw0-f178.google.com (mail-bw0-f178.google.com [209.85.218.178]) by core3.amsl.com (Postfix) with ESMTP id 903313A69B3 for <asrg@irtf.org>; Sun, 24 May 2009 00:57:31 -0700 (PDT)
Received: by bwz26 with SMTP id 26so2512707bwz.7 for <asrg@irtf.org>; Sun, 24 May 2009 00:59:10 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:from:date:message-id :subject:to:content-type; bh=kgYeiZf8eV0UUrn6qOeAuRG9xFksKiWlh5mL106pWAY=; b=VTcf2cDEvI+xTwk5F6UobrAxuhe1vUzhxkZfjTopIydC+fJm9Lk/QAaISWz9hM8ZcL MqMgN2UYgesDucKfRHT9COffmQJ7PPIHj27CY9/HhHSpTVxdhRhcKUUDoRFVcoZwBhzV gr4nIuS6oWR9ZnKLEPbGJrZBGQyUnaa8YuG4M=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:from:date:message-id:subject:to:content-type; b=hlRtXv4FtzOnSxj8uAH9F5ul+VzoIjX2hwKErwPMImbdUcMWs+q2+afRITwBiVxfeY T3p3jXF5fvz7B2zW6NCCzUyGlAQB31kNcnNpWtnDavTQ4bO14KrZmCQxwjbxYDANVyw/ 7NnY0LAFX/CWld0hn3AqnIAyLjtxcm+1r2ES4=
MIME-Version: 1.0
Received: by 10.103.226.10 with SMTP id d10mr2919041mur.105.1243151950159; Sun, 24 May 2009 00:59:10 -0700 (PDT)
From: Amir Herzberg <amir.herzberg@gmail.com>
Date: Sun, 24 May 2009 10:58:49 +0300
Message-ID: <3be421270905240058l423fdb91wcf599f9ba270c9f1@mail.gmail.com>
To: asrg@irtf.org
Content-Type: multipart/alternative; boundary="0016e6dd96a064220b046aa3deb8"
X-Mailman-Approved-At: Sun, 24 May 2009 08:56:27 -0700
Subject: [Asrg] DNS-based Email Sender Authentication Mechanisms: a Critical Review
X-BeenThere: asrg@irtf.org
X-Mailman-Version: 2.1.9
Precedence: list
Reply-To: Anti-Spam Research Group - IRTF <asrg@irtf.org>
List-Id: Anti-Spam Research Group - IRTF <asrg.irtf.org>
List-Unsubscribe: <http://www.irtf.org/mailman/listinfo/asrg>, <mailto:asrg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/asrg>
List-Post: <mailto:asrg@irtf.org>
List-Help: <mailto:asrg-request@irtf.org?subject=help>
List-Subscribe: <http://www.irtf.org/mailman/listinfo/asrg>, <mailto:asrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Sun, 24 May 2009 08:02:01 -0000

Hi guys, I wrote a `critical review' of SPF, DKIM and Sender-ID Framework
(SIDF); it's in process of publication at `computer & security`, you can see
it at http://dx.doi.org/10.1016/j.cose.2009.05.002 (pending editing, final
changes etc.). Nothing much new, just an attempt to provide a
fair-yet-critical survey, hopefully to help clarify this important subject.
Comments will be most welcome. Abstract below.

Amir Herzberg

Title: DNS-based Email Sender Authentication Mechanisms: a Critical Review

Abstract

We describe and compare three predominant email sender authentication
mechanisms based on DNS: SPF, DKIM and Sender-ID Framework (SIDF). These
mechanisms are designed mainly to assist in filtering of undesirable email
messages, in particular spam and phishing emails.We clarify the limitations
of these mechanisms, identify risks, and make recommendations. In
particular, we discuss potential abuse of these mechanisms to facilitate DNS
poisoning, and suggest countermeasures.

-- 
Amir Herzberg
Associate Professor, Dept. of Computer Science
Bar Ilan University
http://AmirHerzberg.com

v2.23.0 | Report a Bug | By Email