Hi Daniel, Daniel Dreymann wrote: > On Dec 15, 6:45 pm, "Eddy Nigg (StartCom Ltd.)" > <[EMAIL PROTECTED]> wrote: > >> Daniel, sorry to be interruptive, but let me clarify this...your system >> has (almost) nothing to do with identity validation, signing and >> encryption and is all about fighting spam. Am I correct with this >> assumption? >> > > It's not about authentication and it's not about blocking spam. OK, so about what is it then? Reading below.... > It's a > solution that allows a mailbox provider to highlight some messages as > being trusted, ..."trusted" is a word used so often, which must be really defined in relation to your service... > i.e. to assert to the end user (via an icon in the UI) > ...that's the effect it has at the providers UI, OK.... > that not only does a message come from whomever it's claimed in the > message, So it is about identity... > but also that there's somebody (Goodmail) that accredited the > sender and that monitors them on an on-going basis. What does it monitor? What accreditation is this? That the identity remained the same? Of course not... > > This system is of much more interest to commercial mailbox providers > and email hygiene[*] people than to people here. The signature is only > a tool we use, nothing ground-breaking or "interesting" crypto-wise > here. Yes, I figured that... > [*] I would have written anti-spam / anti-phishing here, however our > approach is not the traditional "block the bad stuff", but rather > "highlight the good mail". That's certainly a better approach! Spam and phishing wasn't something foreseen by the inventor of the SMTP protocol in the 80's and we can all understand that, hence all the little tools and workarounds for spam. But now that I've gone through your explanation, I still have the impression that it's all about spam. For what other reason do you have to "highlight" the good cookies from the bad ones? Except that identity validation you've got in S/MIME already. Needless to say that validated identities don't spam for obvious reasons. Would you agree with me on this?
(There were many attempts to fight spam and phishing in an effective way and there is nothing wrong with it. "Inventing" an additional layer and make it a business is also nothing new and just fine too.) -- Regards Signer: Eddy Nigg, StartCom Ltd. <http://www.startcom.org> Jabber: [EMAIL PROTECTED] <xmpp:[EMAIL PROTECTED]> Blog: Join the Revolution! <http://blog.startcom.org> Phone: +1.213.341.0390 _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
