Presentation is loading. Please wait.

Presentation is loading. Please wait.

Email Authentications INBOX Authentication Panel San Jose, CA – 2004 Dave Crocker Brandenburg InternetWorking INBOX Authentication Panel San Jose, CA –

Published byFrancis Knight Modified over 8 years ago

Similar presentations

Presentation on theme: "Email Authentications INBOX Authentication Panel San Jose, CA – 2004 Dave Crocker Brandenburg InternetWorking INBOX Authentication Panel San Jose, CA –"— Presentation transcript:

1 Email Authentications INBOX Authentication Panel San Jose, CA – 2004 Dave Crocker Brandenburg InternetWorking INBOX Authentication Panel San Jose, CA – 2004 Dave Crocker Brandenburg InternetWorking

2 2 2 D. CrockerINBOX / Authentication – SJ,2004 Security Functions for Email TermFunctions Identification Who/What does this purport to be? Authentication Is it really them? Authorization What are they allowed to do? Accreditation What do I think of the agency giving them that permission?

3 3 3 D. CrockerINBOX / Authentication – SJ,2004 IdentitiesIdentities ReferenceSemantic Peer MTA IPSMTP client EHLO DomainSMTP client Provider IPSMTP client site Mail-From Bounces address From Author Sender Posting agent Received Handling sites ReferenceSemantic Peer MTA IPSMTP client EHLO DomainSMTP client Provider IPSMTP client site Mail-From Bounces address From Author Sender Posting agent Received Handling sites

4 4 4 D. CrockerINBOX / Authentication – SJ,2004 Security Models Object Channel SecureMail MailSecureMail Secure Mail Mail Mail Mail Mail MTA MTA MTA MTA MTA MTA MTA Secure Secure Secure MTA Secure MTA MTA Secure MTA MTA MTA Secure MTA Secure

5 5 5 D. CrockerINBOX / Authentication – SJ,2004

6 6 6 The Path in a Kinder, Simpler World MUA MSAMTA MDA MUA Peer MTA Mail Agents MUA = User MSA = Submission MTA= Transfer MDA= Delivery

7 7 7 D. CrockerINBOX / Authentication – SJ,2004 MTA Path(s) Today MUA MSAMTA MDA MUA MTA Peer MTA MTA

8 8 8 D. CrockerINBOX / Authentication – SJ,2004 MTA SMTP 2821.MailFrom Reg oMUAMSA MTA 1 MTA 4 MDArMUA MTA 3 MTA 2 Peer MTA Assigns MailFrom (bounce address) Did MSA authorize MTA 1 to send this message ? Did MSA authorize MTA 2 to send this message ? Did MSA authorize MTA 3 to send this message ? 1.Authority and Accreditation of MSA and MSA domain administrators 2.MSA must pre- register and trust each MTA in path

9 9 9 D. CrockerINBOX / Authentication – SJ,2004 MTA SMTP RFC2821.HELO Reg oMUAMSAMTA 1 MTA 4 MDArMUA MTA 3 MTA 2 Did administrator of domain asserted by MTA 1 authorize it to be an MTA ? Did administrator of domain asserted by MTA 2 authorize it to be an MTA ? Did administrator of domain asserted by MTA 3 authorize it to be an MTA ? Peer MTA 1.Authority/Accreditation of Domain Administrator 2.Trust of latest-hop network operation

Download ppt "Email Authentications INBOX Authentication Panel San Jose, CA – 2004 Dave Crocker Brandenburg InternetWorking INBOX Authentication Panel San Jose, CA –"

Similar presentations

McGraw-Hill©The McGraw-Hill Companies, Inc., 2000 Chapter 22 Simple Mail Transfer Protocol (SMTP)

McGraw-Hill©The McGraw-Hill Companies, Inc., 2000 Chapter 22 Simple Mail Transfer Protocol (SMTP)
How Will Authentication Reduce Global Spam? OECD Anti-Spam Task Force Pusan – September, 2004 Dave Crocker Brandenburg InternetWorking OECD Anti-Spam Task.

How Will Authentication Reduce Global Spam? OECD Anti-Spam Task Force Pusan – September, 2004 Dave Crocker Brandenburg InternetWorking OECD Anti-Spam Task.
© 2007 Convio, Inc. Implementation of Sender ID Bill Pease, Chief Scientist Convio.

© 2007 Convio, Inc. Implementation of Sender ID Bill Pease, Chief Scientist Convio.
D. CrockerIntroduction to BATV 1 MIPA Bounce Address Tag Validation (BATV) “Was use of the bounce address authorized?” D. Crocker Brandenburg InternetWorking.

D. CrockerIntroduction to BATV 1 MIPA Bounce Address Tag Validation (BATV) “Was use of the bounce address authorized?” D. Crocker Brandenburg InternetWorking.
System Aspects of Spam Control Architecture and Operations Issues IBM Academy 6 Apr 2005 Dave Crocker Brandenburg InternetWorking IBM.

System Aspects of Spam Control Architecture and Operations Issues IBM Academy 6 Apr 2005 Dave Crocker Brandenburg InternetWorking IBM.
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 23 Electronic Mail: SMTP,

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 23 Electronic Mail: SMTP,
Exchange server 2003. Mail system Four components Mail user agent (MUA) to read and compose mail Mail transport agent (MTA) route messages Delivery agent.

Exchange server Mail system Four components Mail user agent (MUA) to read and compose mail Mail transport agent (MTA) route messages Delivery agent.
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 23 Electronic Mail: SMTP,

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 23 Electronic Mail: SMTP,
CS 497C – Introduction to UNIX Lecture 38: - Electronic Mail Chin-Chih Chang

CS 497C – Introduction to UNIX Lecture 38: - Electronic Mail Chin-Chih Chang
© Copyright 2005. MX Logic, Inc. All rights reserved. 1 Strictly Confidential MX LOGIC CORPORATE OVERVIEW MARCH 2005.

© Copyright MX Logic, Inc. All rights reserved. 1 Strictly Confidential MX LOGIC CORPORATE OVERVIEW MARCH 2005.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Application Layer Functionality and Protocols Network Fundamentals – Chapter.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Application Layer Functionality and Protocols Network Fundamentals – Chapter.
Architecture of Email SMTP, POP, IMAP, MIME.

Architecture of SMTP, POP, IMAP, MIME.
DomainKeys Identified Mail (DKIM) D. Crocker Brandenburg InternetWorking mipassoc.org/mass  Derived from Yahoo DomainKeys and Cisco.

DomainKeys Identified Mail (DKIM) D. Crocker Brandenburg InternetWorking mipassoc.org/mass  Derived from Yahoo DomainKeys and Cisco.
Pilot project proposal: AffiL Affiliated domain names for trust Dave Crocker Brandenburg InternetWorking bbiw.net

Pilot project proposal: AffiL Affiliated domain names for trust Dave Crocker Brandenburg InternetWorking bbiw.net
1 Linux Networking and Security Chapter 3. 2 Configuring Client Services Configure DNS name resolution Configure dial-up network access using PPP Understand.

1 Linux Networking and Security Chapter 3. 2 Configuring Client Services Configure DNS name resolution Configure dial-up network access using PPP Understand.
1 Email Introduction AfNOG CHIX 2011 Blantyre, Malawi By Evelyn NAMARA.

1 Introduction AfNOG CHIX 2011 Blantyre, Malawi By Evelyn NAMARA.
Mail Server Three major components MTA MUA MDA Mail Transfer Agent

Mail Server Three major components MTA MUA MDA Mail Transfer Agent
IST346 – Email Servies Agenda  What is email?  Email Policies  The technical side of Email  Components  Protocols  Email architecture  Email Security.

IST346 – Servies Agenda  What is ?  Policies  The technical side of  Components  Protocols  architecture  Security.
Webmail. Agenda Why use webmail? Why use webmail? What is webmail What is webmail –Email basic »Email system MDA MDA MTA MTA MUA MUA »Protocol SMTP SMTP.

Webmail. Agenda Why use webmail? Why use webmail? What is webmail What is webmail – basic » system MDA MDA MTA MTA MUA MUA »Protocol SMTP SMTP.
CSIE 1 Filtering mail Speaker: Chung yu Wu Adviser: Quincy Wu Date: 2005/12/07.

CSIE 1 Filtering mail Speaker: Chung yu Wu Adviser: Quincy Wu Date: 2005/12/07.

Similar presentations

Ads by Google