IETF Logo Mail Archive

Re: [Asrg] 6. Proposals - AMTP (rev 01)

Yakov Shafranovich <research@solidmatrix.com> Thu, 02 October 2003 03:41 UTC

Received: from optimus.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id XAA17297 for <asrg-archive@odin.ietf.org>; Wed, 1 Oct 2003 23:41:30 -0400 (EDT)
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1A4uKx-000090-QA for asrg-archive@odin.ietf.org; Wed, 01 Oct 2003 23:41:07 -0400
Received: (from exim@localhost) by www1.ietf.org (8.12.8/8.12.8/Submit) id h923f7Ef000548 for asrg-archive@odin.ietf.org; Wed, 1 Oct 2003 23:41:07 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1A4uKx-00008l-LL for asrg-web-archive@optimus.ietf.org; Wed, 01 Oct 2003 23:41:07 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id XAA17286 for <asrg-web-archive@ietf.org>; Wed, 1 Oct 2003 23:41:00 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 1A4uKv-0001mk-00 for asrg-web-archive@ietf.org; Wed, 01 Oct 2003 23:41:05 -0400
Received: from ietf.org ([132.151.1.19] helo=optimus.ietf.org) by ietf-mx with esmtp (Exim 4.12) id 1A4uKv-0001mh-00 for asrg-web-archive@ietf.org; Wed, 01 Oct 2003 23:41:05 -0400
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1A4uKr-00006W-OB; Wed, 01 Oct 2003 23:41:01 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1A4uKP-00005v-8m for asrg@optimus.ietf.org; Wed, 01 Oct 2003 23:40:33 -0400
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id XAA17263 for <asrg@ietf.org>; Wed, 1 Oct 2003 23:40:25 -0400 (EDT)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 1A4uKN-0001m3-00 for asrg@ietf.org; Wed, 01 Oct 2003 23:40:31 -0400
Received: from smtp.sprintpcs.com ([63.167.114.16] helo=dedicated59-bos.wh.sprintip.net) by ietf-mx with esmtp (Exim 4.12) id 1A4uKM-0001lQ-00 for asrg@ietf.org; Wed, 01 Oct 2003 23:40:30 -0400
Received: from solidmatrix.com ([68.27.185.46]) by dedicated59-bos.wh.sprintip.net (iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003)) with ESMTPA id <0HM4001FD26IXO@dedicated59-bos.wh.sprintip.net> for asrg@ietf.org; Thu, 02 Oct 2003 03:40:00 +0000 (GMT)
From: Yakov Shafranovich <research@solidmatrix.com>
Subject: Re: [Asrg] 6. Proposals - AMTP (rev 01)
In-reply-to: <5.2.0.9.0.20031001202818.01f678b8@mail.bearnet.com>
To: Bill Weinman <wew@bearnet.com>
Cc: ASRG <asrg@ietf.org>
Message-id: <3F7B9E07.4010908@solidmatrix.com>
Organization: SolidMatrix Technologies, Inc.
MIME-version: 1.0
Content-type: text/plain; charset="us-ascii"; format="flowed"
Content-transfer-encoding: 7bit
X-Accept-Language: en-us, en
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4) Gecko/20030624
References: <5.2.0.9.0.20030928222851.01d8b1e8@mail.bearnet.com> <5.2.0.9.0.20030928211427.01d2a630@mail.bearnet.com> <5.2.0.9.0.20030928211427.01d2a630@mail.bearnet.com> <5.2.0.9.0.20030928222851.01d8b1e8@mail.bearnet.com> <5.2.0.9.0.20031001202818.01f678b8@mail.bearnet.com>
Content-Transfer-Encoding: 7bit
Sender: asrg-admin@ietf.org
Errors-To: asrg-admin@ietf.org
X-BeenThere: asrg@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=unsubscribe>
List-Id: Anti-Spam Research Group - IRTF <asrg.ietf.org>
List-Post: <mailto:asrg@ietf.org>
List-Help: <mailto:asrg-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/asrg>, <mailto:asrg-request@ietf.org?subject=subscribe>
List-Archive: <https://www1.ietf.org/mail-archive/working-groups/asrg/>
Date: Wed, 01 Oct 2003 23:39:51 -0400
Content-Transfer-Encoding: 7bit
Content-Transfer-Encoding: 7bit

Bill Weinman wrote:
> At 11:13 PM 9/28/2003, Yakov Shafranovich wrote:
> 
>> Second, I would like to ask if you can clarify for us whether your 
>> proposal seeks to replace SMTP completely. 
> 
> Yes, AMTP is intended as a replacement of SMTP. It is also substantially 
> derivative of SMTP, a design decision intended to ease transition.


First of all Bill, please keep in mind that we are not out to get you 
here, rather we have seen the idea of replacing SMTP being discussed 
many times before (check the archives) and there are many reasons 
against it. We would consider this step, IF determined to be necessary, 
as a long term solution skin to deployment of DNS-SEC or IPv6.

Second, are you aware of other efforts underway to provide a protocol to 
replace SMTP. Especially the following:

AMDP - http://www.ietf.org/internet-drafts/draft-fakih-amdp-00.txt
AMTP - http://www.danisch.de/tmp/draft_mtp.txt
AMTP - http://www.ietf.org/internet-drafts/draft-crouzet-amtp-00.txt
Pull proposals such as IM2000, etc.

There are also many additional proposals mentioned in the list archive 
(use gmane.org to search).

> 
>> "    The idea of replacing SMTP is appealing because it
>>      permits thinking in terms of creating an infrastructure
>>      that has accountability and restrictions built in.
>>      Unfortunately an installed base the size of the
>>      Internet is not likely to make such a change anytime
>>      soon.  It seems far more likely that successful spam
>>      control mechanisms will be introduced as increments to
>>      the existing Internet mail service."
> 
> 
> I am acutely aware of this issue and AMTP addresses it by maintaining 
> the overall design and command set of SMTP. AMTP is substantially 
> derivative of SMTP and as such the transition should be, not entirely 
> trivial, but as close as possible without sacrificing its operational 
> advantages.
> 

I want you to reconsider this issue again. Keep in mind who wrote the 
technical considerations document where this has been taken from - Dave 
Crocker. He is the same person who wrote RFC 822 and has a tremendous 
experience with email. He had also written additional comments 
(http://news.com.com/2009-1081_3-5060650.html) on the idea, specifically:

"
o E-mail authentication mechanisms already exist. They are not used very 
much. Why would a new mechanism fare better?
o When there is real consensus about the functional changes that are 
needed for e-mail, we can start deciding what technical changes will 
achieve them. Only when we find that we cannot modify SMTP to provide 
them will it make sense to consider replacing SMTP.
o Authenticating an e-mail sender will not prevent spam. It might reduce 
some kinds of it, but a great deal of spam is from people who are 
perfectly happy to be correctly identified.
"

He has stated also that:

"In general, solving spam will be easy--as long as we ignore the 
installed base of users; the human side of living with the changes; the 
need to scale use by everyone, everywhere; and the possibility that 
spammers can easily work around any particular prevention mechanism."

It would be very useful to the group in general if we had an analysis of 
whether SMTP needs to be replaced in line with Dave's suggestion above. 
Replacing SMTP is an architechtural issue for the entire Internet. The 
Internet Architechture Board (IAB) which is above both the IRTF and the 
IETF is aware of the issue and will be evaluating it, so this evaluation 
will have input from them.

>> In particular we would like to consider whether it would be more 
>> viable to reformulate your protocol as an ESMTP extension rather than 
>> a replacement for SMTP.
> 
> 
> I considered that approach carefully. Ultimately I realized that the 
> SMTP protocol REQUIRES (in the sense of RFC2119) a level of promiscuity 
> that would prevent AMTP from accomplishing its goals.
> 
> I spent many hours on transitional planning before I wrote the first 
> draft, and I am working on documents to describe the transition process. 
> In short, once I have working code I will provide tools to make the 
> adoption of AMTP sufficiently painless that I expect it to be adopted, 
> gradually, by a sufficient number of hosts to constitute a critical 
> mass. Time will tell of course, but I have yet to see any argument that 
> convinces me otherwise.
> 

I am assuming that you are planning on submitting this protocol as a 
standard to the IETF or as an RFC. In that case, I would suggest that 
you address the deployment and adoption issues in great detail. 
Additionally, the IAB will be considering the issue at some point and it 
is important to watch what they will come up with.

> ---
> Never send a monster to do the work of an evil scientist.

BTW, I love the quote :)


_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg

v2.23.0 | Report a Bug | By Email