Sender ID will survive open source snub, analysts say

By Margie Semilof, Senior News Writer 08 Sep 2004 | SearchSecurity.com

Digg This!     StumbleUpon     Del.icio.us

The refusal of some open source groups to support the Microsoft-co-authored Sender ID specification will probably have little or no effect on the adoption of the antispam protocol, experts said.

Last weekend, the Debian project became the latest open source organization to reject Microsoft's royalty-free Sender ID patent license agreement. In a statement, Debian said that the "current license and resulting encumbrances are incompatible with the [Debian free software guidelines]."

Debian is the effort of a group of individuals who are creating an open source operating system based on the Linux kernel, according to information on the group's Web site.

Earlier last week, the Apache Software Foundation expressed similar sentiments about Sender ID in a letter to the Internet Engineering Task Force working group known as the MTA Authorization Records in DNS.

Analysts said it doesn't really matter whether these organizations are on board because Sender ID will be adopted anyway, and it will happen quickly. "If IBM, Microsoft and Sendmail are using it, then it's less of an issue," said Mark Leavitt, a research analyst at International Data Corp., a Framingham, Mass.-based market research firm.

Most medium to large businesses are using IBM or Microsoft products, and as you get into small and medium-sized companies, Novell Inc. also has some market share. But not everyone has to use Sender ID for it to be valuable, Leavitt said.

"If [open source contingents] don't support [Sender ID] it won't cripple the fight against spam," Leavitt said. "Sender ID won't solve the fight against spam either."

Other analysts agreed. "This thing will be adopted and major ISPs will run it -- and that's where it will have the most effect," said Jonathan Penn, a principal analyst at Forrester Research, in Cambridge, Mass.

Penn pointed out that many antispam vendors, including IronPort Systems Inc., Tumbleweed Communications Corp., Symantec Corp., VeriSign Inc., IBM and America Online, have already said they will support Sender ID.

"If Apache doesn't want to implement it, fine," Penn said. "People will just go somewhere else."

This article originally appeared on SearchExchange.com.

Tags: Email and Messaging Threats (spam, phishing, instant messaging),  VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Email and Messaging Threats (spam, phishing, instant messaging) How to prevent brute force webmail attacks Unified communications: Securing a converged infrastructure Chained Exploits: How to prevent phishing attacks from corporate spies 3FN.net ISP shutdown interrupts spam campaigns Swine flu outbreak results in spam pandemic What does 'invoked by uid 78' mean? Economy fuels malware, spam Internet Explorer 8 includes a bevy of security features Adobe JBIG2 exploits being spammed, IBM warns Fierce competition prompted new Cisco email security options Email and Messaging Threats (spam, phishing, instant messaging) Research

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary CAPTCHA  (SearchSecurity.com) challenge-response system  (SearchSecurity.com) crimeware  (SearchSecurity.com) pharming  (SearchSecurity.com) phishing  (SearchSecurity.com) Register of Known Spam Operations  (SearchSecurity.com) Rock Phish  (SearchSecurity.com) Sender Policy Framework  (SearchSecurity.com) spam cocktail  (SearchSecurity.com) spear phishing  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary