
	DomainKeys


	Home > Security Definitions - DomainKeys

SearchSecurity.com Definitions (Powered by WhatIs.com)

EMAIL THIS

LOOK UP TECH TERMS		Powered by:

Browse tech terms alphabetically:

A B C D E F G H I J K L M N O P Q R S T U V W X Y Z #

DomainKeys

Show me everything on Email and Messaging Threats (spam, phishing, instant messaging)

- DomainKeys is an anti-spam software application in development at Yahoo that uses a form of public key cryptography to authenticate the sender's domain. Today, the sender of a spam message can spoof the originating address so that recipients will think it came from someone else and thus open it as legitimate mail. Yahoo's software would enable the receiving end of e-mail to easily filter out notes in which the sender's stated address could not be authenticated as the actual address. Yahoo plans to make its software freely available to open-source developers, hoping that it will be adopted, installed, and implemented throughout the Internet. In a Reuters interview Brad Garlinghouse, Yahoo's VP of communications products, described the scope of the DomainKeys initiative: "What we're proposing here is to re-engineer the way the Internet works with regard to the authentication of e-mail."

In the Yahoo anti-spam system, an e-mail message would have the originating domain's private key securely embedded in its header. When the message arrives at its destination, the key can be compared to the stated domain's public key in the domain name system (DNS) listings to verify that it actually comes from where it says it comes from. Messages that originate from known sources of spam or from domains other than the one they claim to be from could be rejected by the recipient's server.

The Internet community is divided on whether or not the Yahoo effort is likely to work. For one thing, the software would have to be widely accepted to be successful. Furthermore, some critics believe if DomainKeys was broadly implemented it would lead to an unacceptable slowing of transmission due to the extra handling of each message. Another concern is that spammers could carry out replay attacks, in which the attacker intercepts messages, steals legitimate digital signatures, and then forges messages using them. However, such problems are not insuperable. Proponents argue that Yahoo has a potential solution to the spam problem in DomainKeys and that, with the ever-increasing glut of spam on the Internet, we should give even possible solutions a good trial before dismissing them.

There are a number of similar spam solutions proposed, including Sender Permitted From (SPF), the Designated Mailers Protocol (DMP), and Reverse Mail Exchange (RMX).

Learn more about Email and Messaging Threats (spam, phishing, instant messaging)

Chained Exploits: How to prevent phishing attacks from corporate spies: Ever wonder if someone is monitoring everywhere you go on the Internet? In this chapter excerpt, learn how to keep corporate spies at bay.
Voice over IP Security: VoIP Threat Taxonomy: In an excerpt from Voice over IP Security, author Patrick Park reviews VoIP threats, including spam, phishing and other threats against social context.
Email security test: Basics and threats: Test your knowledge of email security essentials with this fifteen-question quiz from Joel Snyder.
Hacker's Challenge 3: Big Bait, Big Phish: In this excerpt from "Hacker's Challenge 3," author Bill Pennington describes a situation in which an organization's network is attacked and customer data is compromised.
A Business Guide to Information Security: Threats and Compliance: This excerpt from "A Business Guide to Information Security," identifies six future risks to information security and how they will affect individuals and organizations.

LAST UPDATED:

18 Jan 2004

Do you have something to add to this definition? Let us know.
Send your comments to techterms@whatis.com

More resources from around the web:

-	PC Magazine mentions Domain Keys in the article "Congress, Yahoo! Slam Spam."
-	BusinessWeek online explores some of the criticisms of DomainKeys in the article "Yahoo's Risky Antispam Gambit."
-	Broadband Reports.com has more information and a discussion about the DomainKeys dispute.

FILE EXTENSION AND FILE FORMAT LIST
File Extension and File Format List:
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z #

RELATED CONTENT

	Messaging security risks have upper hand on solutions Spam, phishing and infected attachments continue to plague messaging platforms, despite sophisticated protection. What's the answer?
	Web-based attacks skyrocket, pirating sites surge, security firms say Reports highlight surge in spam as well as an increase in malicious Web pages attacking visitors with Trojan malware and downloaders.
	Pushdo botnet uses Facebook to spread malicious email attachment A phony message warns users that their Facebook password has been reset.

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

CAPTCHA (SearchSecurity.com)
A CAPTCHA (Completely Automated Public Turing test to tell Computers and Humans Apart) is a test, used with challenge-response systems, that's...

crimeware (SearchSecurity.com)

Get More DomainKeys Answers

View this month\\'s issue and subscribe today.

Apply online for free conference admission.

SEARCH :

Site Index

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2003 - 2009, TechTarget \| Read our Privacy Policy