Feb
14

Ready to Learn More about DMARC? Join Our Webinar with ExactTarget


sammasiello
By Sam Masiello
GM/Chief Security Officer

If you have any interest in the latest news around email, email security, or phishing you’ve probably heard the buzz following up last week’s announcement of a new technology to help fight phishing and spoofing emails called DMARC (which stands for Domain-based Message Authentication, Reporting & Conformance). Along with all of the interest that we have seen both from the media and from the industry-at-large, I’ve still seen a fair amount of confusion around what DMARC currently is and is not. I wanted to take a couple of moments to help provide a bit more clarity on the topic as well as discuss some of the upcoming ways in which Return Path is helping to continually educate the email and security world on DMARC.

Tell me more

Categories: Explanation Standards View Comments

Sep
29

DKIM History, Progress, and Future


J.D.
By J.D. Falk
Director, Internet Standards & Governance
Email Intelligence Group

This week the IETF DKIM Working Group officially concluded, after publishing a final few documents and updates. I can’t help thinking back to the meetings where I first heard about DKIM, and DomainKeys before it.

Tell me more

Categories: Commentary Standards View Comments

Jul
12

Email Beyond English


J.D.
By J.D. Falk
Director, Internet Standards & Governance
Email Intelligence Group

Expanding beyond the initial English alphabet and characters was, and remains, a challenge for email systems.

Tell me more

Categories: Explanation Standards View Comments

May
24

Reporting Spam on Mobile Devices


J.D.
By J.D. Falk
Director, Internet Standards & Governance
Email Intelligence Group

Return Path’s new study reveals that the massive increase in email readership on mobile devices corresponds with a decrease in use of webmail, particularly on weekends. If your focus is either spam detection or list management, that’s bad news.

Tell me more

Categories: Explanation Standards View Comments

May
19

What Ever Happened to ADSP?


J.D.
By J.D. Falk
Director, Internet Standards & Governance
Email Intelligence Group

Many mailbox providers are concerned about liability and expectations: they know they’ll be blamed by their users and even by senders when a senders’ ADSP policy leads to a legitimate (but unsigned) message being discarded. They’re also concerned that they’ll be expected to provide technical support for every mail operator who wants to use ADSP. Similarly, those same mail operators — whether senders of bulk marketing email, enterprise Exchange administrators, or mailbox providers themselves — are worried that there may be mail streams that aren’t applying DKIM correctly, or aren’t authenticating at all.

Tell me more

Categories: Explanation Standards View Comments

Apr
26

Understanding the “Precedence:” Header


J.D.
By J.D. Falk
Director, Internet Standards & Governance
Email Intelligence Group

Though never formally standardized, the Precedence: header has been around since the earliest days of internet email. Google’s use of the Precedence: header for labeling is a new idea, and (probably) unique.

Tell me more

Categories: Explanation Standards View Comments

Apr
7

SRV Records Simplify Mail Client Configuration


J.D.
By J.D. Falk
Director, Internet Standards & Governance
Email Intelligence Group

If you’ve configured an “Other” email account (besides the handful of pre-configured partners) on a shiny new iDevice or Apple’s Mail.app, you may have noticed that it doesn’t initially ask for the SMTP and IMAP or POP server names. This is because it can look those up automatically, if the domain name on the right side of your email address has published SRV records in DNS.

Tell me more

Categories: Explanation Standards View Comments

Mar
3

Will Expiring Email Go Anywhere?


J.D.
By J.D. Falk
Director, Internet Standards & Governance
Email Intelligence Group

Josh Baer has recently proposed creating an “X-Expires” header to allow the sender of a message to have the message deleted at a predefined date and time. Others have already made most of the arguments against it. He claims that everyone thought List-Unsubscribe was a bad idea, and we’ve changed our minds, so we’ll change our minds on this one too. But there’s a bigger difference here.

Tell me more

Categories: Commentary Standards View Comments

Mar
1

Comcast’s Impressive System for Notifying Infected Users


J.D.
By J.D. Falk
Director, Internet Standards & Governance
Email Intelligence Group

As one of the world’s largest access providers, our partner Comcast has put a ton of thought into developing a notification system for their users. Their motivation is clear, and close to the heart of anyone working in security for end user systems: “to advise the user that their computer is infected with malware, that their security is at severe risk and/or has already been compromised, and that it is recommended that they take immediate, corrective action NOW.”

Tell me more

Categories: Explanation How-To Standards View Comments

Oct
29

What Does It Mean to “Certify” Email?


J.D.
By J.D. Falk
Director, Internet Standards & Governance
Email Intelligence Group

In the certified email concept, what’s certified is that the sender of the message is following a set of standards or practices, and thus should be allowed to send the message. In the certified postal mail concept, what’s certified is that the message was successfully sent and/or delivered and/or received, depending on the level of service. The same word, applied to different aspects of the transaction, results in very different products.

Tell me more

Categories: Explanation Standards View Comments

<<1 >>