Preventing E-mail Spam: The Conceptualization and the Analysis of an Infrastructure Framework

Spamming remains a form of Internet abuse, which burdens the Internet infrastructure, is generally regarded as an annoyance, and is said to cause a huge economic harm. Many technological, organizational, and legislative anti-spam measures have already been proposed and implemented, but have not led to any substantial decrease in the number of spam e-mails. We propose a scalable and flexible infrastructure framework that integrates several anti-spam measures and that features both a technological and an organizational facet. The key element of our infrastructure is a new organizational unit that reliably and transparently limits the number of e-mails that can be sent per day and per account. We also analyze the proposed framework in terms of its theoretical effectiveness, the required resources, and its limitations.

[1]  Alan DeKok Lightweight MTA Authentication Protocol (LMAP) Discussion and Applicability Statement , 2004 .

[2]  Alexey Melnikov,et al.  Simple Authentication and Security Layer (SASL) , 2006, RFC.

[3]  John Langford,et al.  CAPTCHA: Using Hard AI Problems for Security , 2003, EUROCRYPT.

[4]  Serge Gauthronet,et al.  Unsolicited commercial communications and data protection , 2001 .

[5]  Patrick Pantel,et al.  SpamCop: A Spam Classification & Organisation Program , 1998, AAAI 1998.

[6]  William W. Cohen Learning Rules that Classify E-Mail , 1996 .

[7]  Penny Duquenoy,et al.  Combating Spam through Legislation: A Comparative Analysis of US and European Approaches , 2005, CEAS.

[8]  Ben Y. Zhao,et al.  Approximate Object Location and Spam Filtering on Peer-to-Peer Systems , 2003, Middleware.

[9]  Guido Schryen A Formal Approach towards Assessing the Effectiveness of Anti-Spam Procedures , 2006, Proceedings of the 39th Annual Hawaii International Conference on System Sciences (HICSS'06).

[10]  Trevor Tompkins,et al.  Giving e-mail back to the users: Using digital signatures to solve the spam problem , 2003, First Monday.

[11]  John G. Myers SMTP Service Extension for Authentication , 1999, RFC.

[12]  Judy Kay,et al.  Automatic Induction of Rules of e-mail Classification , 2001 .

[13]  Ernesto Damiani,et al.  P2P-based collaborative spam detection and filtering , 2004 .

[14]  Nathaniel S. Borenstein,et al.  Multipurpose Internet Mail Extensions (MIME) Part One: Format of Internet Message Bodies , 1996, RFC.

[15]  Susan T. Dumais,et al.  A Bayesian Approach to Filtering Junk E-Mail , 1998, AAAI 1998.