[IP] ITU "spam" summit concludes in Geneva

To: Ip <ip@xxxxxxxxxxxxxx>
Subject: [IP] ITU "spam" summit concludes in Geneva
From: David Farber <dave@xxxxxxxxxx>
Date: Mon, 12 Jul 2004 07:40:12 -0400
List-help: <http://v2.listbox.com/doc/help_sub?list_name=ip@v2.listbox.com>
List-id: <ip@xxxxxxxxxxxxxx>
List-software: listbox.com v2.0
List-subscribe: <mailto:subscribe-ip@v2.listbox.com>, <http://v2.listbox.com/subscribe/?listname=ip@v2.listbox.com>
List-unsubscribe: <mailto:unsubscribe-ip@v2.listbox.com>, <http://v2.listbox.com/member/unsubscribe/?listname=ip@v2.listbox.com>
Reply-to: dave@xxxxxxxxxx
Sender: owner-ip@xxxxxxxxxxxxxx


From: Suresh Ramasubramanian <suresh@xxxxxxxxxx>
Date: July 11, 2004 3:30:06 AM PDT
To: David Farber <dave@xxxxxxxxxx>
Cc: dewayne@xxxxxxxxxxxxx, fmaia@xxxxxxxxx
Subject: Re: [IP] ITU "spam" summit concludes in Geneva

Hi

I was a speaker at the ITU/WSIS thematic meeting on spam, and chairedthe

session on technical solutions to spam, where one of the speakers on my
panel was Dr.John Levine, chair of the IRTF's ASRG (anti spam research
group - http://asrg.sp.am).

What I and several others have been pointing out in various articles,and atvarious antispam conferences, is that there is no silver bullet forspam -and certainly, technical solutions are not the one true solution. Allyou

get is the classic situation of a better mousetrap being followed by the

evolution of smarter mice. I am glad that the ITU meeting reached averysimilar conclusion, followed by concrete steps that were proposed todeal

with this menace.

There was a near universal consensus among the speakers at this meetingthat

you needed a combination of solutions, including

* Better antispam laws. Sensible antispam laws like the Australian lawfor

choice, not the loophole ridden CAN-SPAM and similar laws.

* Stronger antispam policies at ISPs, and their enforcement. This isgoing

to be the key to eradicating spammers.  Getting telecom regulators and
governments involved in this means that we just might be able to apply a

really effective lever on recalcitrant ISPs to develop and enforceantispam

policies.

Both laws and policies are no good till they are enforced. In the caseoflaws, you need an enforcement authority (say the police, or the FTC orits

equivalent in different countries) who -

* Understands the issue, and the tools / techniques used by spammers

* Has sufficient money and human resources to assign officers toinvestigate

and follow up on issues brought to their attention.

* Technical solutions that try to stop spam as best as they can withoutthe"collateral damage" of blocking legitimate email at the same time.This, on

the whole, tends to be an idealized golden mean in spam filtering. Spam

filters, for various reasons, tend to get a bit broader than is ideal -nosurprise there, as a spammer on a network can send out far more spam inaday than all the legit users on that network can send out in a wholemonth.


* Education.

Awareness among the legitimate email marketers about what is and whatisn'tacceptable in marketing by email where the recipient pays foreverything, soemail marketing, if unsolicited, is the equivalent of sending postaljunk

mail postage due, recipient pays.

Awareness among regular users on how to react to spam in their inboxes,how

not to fall for email scams (nigerian letters, bank password theft scams
etc)

The deadline of 2006 set by the ITU sounds a trifle optimistic but we do
need to have a deadline, in order to implement a whole set of steps that

will lay the foundation for a global effort to mitigate the spamproblem.

[note: not eradicate - spam is about as likely to be eradicated as, say,
cockroaches are]

I have organized antispam conferences in the asia pacific region(please seehttp://www.apcauce.org) every six months for the past two years, andthese

have been quite productive wrt getting some policies in place, and in
getting ministries, internet regulators etc from the asiapac region

(particularly places like China and Korea, as well as Australia, NZetc) toexchange ideas and coordinate efforts. The education angle is alsocovered

as the speakers include several people who have been involved with email

systems for years if not decades, such as Dave Crocker, author of RFC822

among other things.

The most important takeaway from the ITU conference is that the ITU is,asan umbrella organization that maintains links and working relationshipswith

a whole lot of other organizations in the telecom and internet sector,

suitably placed to help spread this common approach to dealing withspam,

and to formally or informally coordinate worldwide efforts to deal with
spam.

Otherwise, antispam efforts have tended to resemble the story of theblindmen and the elephant, where each effort grabs hold of some body part oftheelephant (the trunk, the leg, the tail ...) and only feels / looks atthat

part of the system rather than taking a world view.  That, and these

uncoordinated efforts tend to pull in several different directions sothatvarious contradictory and mutually self canceling efforts get deployedin

various places.

Personally, I wish the ITU luck, and plan to contribute to theirefforts to

the best of my ability.

regards
--srs

Coordinator, CAUCE Asia Pacific--
Suresh Ramasubramanian | suresh@xxxxxxxxxx | gpg EDEDEFB9
email sturmbahnfuehrer | lower middle class unix sysadmin


-------------------------------------
You are subscribed as roessler@xxxxxxxxxxxxxxxxxx
To manage your subscription, go to
 http://v2.listbox.com/member/?listname=ip

Archives at: http://www.interesting-people.org/archives/interesting-people/

Prev by Date: [IP] MP3 Device Makers Could Be Next
Next by Date: [IP] Zimbabwe telecoms authority warns companies on VoIP use
Previous by thread: [IP] ITU "spam" summit concludes in Geneva
Next by thread: [IP] Zimbabwe telecoms authority warns companies on VoIP use
Index(es):
- Date
- Thread