Even as the House of Representatives on Dec. 8 approved the first federal bill to outlaw spam--the Can-Spam Act of 2003, which President Bush is expected to sign into law--businesses beset by unsolicited commercial E-mail continue to devise more robust defenses. The latest proposal from Internet service and content provider Yahoo Inc. calls for the deployment of open-source authentication software to verify the Internet domain from which messages originate.
The company is developing code, called DomainKeys, that's compatible with Sendmail and qmail, two popular E-mail transmission programs known as message transfer agents. It anticipates release sometime next year. DomainKeys will use public key cryptography to digitally sign outgoing messages to reassure a public now suspicious of E-mail.
An October study by the nonprofit Pew Internet & American Life Project found that more than half of E-mail users surveyed have become less trusting of E-mail as a result of spam. That's understandable given the ease with which spammers are able to make their solicitations and scams appear to have come from reputable sources.
As the largest commercial provider of E-mail in the United States, according to Nielsen/NetRatings' October numbers, Yahoo has reason to be concerned: Spam accounts for perhaps half of the messages it handles. "Clearly there's a real cost for us, as well as other major players," says Brad Garlinghouse, VP of communication products at Yahoo.
But the damage goes beyond dollars. "The cost to the spoofed companies is staggering," Tom Gillis, senior VP of marketing for anti-spam vendor IronPort Systems Inc., wrote in an E-mail message, "not only in terms of the cost to maintain an infrastructure capable of handling the inevitable influx of mail bouncing from bad addresses, but also the cost to their customer-service departments for handling the complaints, and the immeasurable damage to their reputations as trustworthy companies."
To realize the benefits of cloud-native software, an application must actually be cloud-native—designed to run in the cloud, interacting with disaggregated cloud services, fully manageable as code—to deliver the expected benefits.
By combining resources and expertise, the AI-Enabled ICT Workforce Consortium will offer a blueprint for how industries can adapt to an AI-dominated future.
IT leaders should heed the guidance of cybersecurity insurance providers who think businesses should prioritize security education, incident preparedness, regular internal audits, and ongoing vulnerability scanning and patching.
