Modernizing Authentication — What It Takes to Transform Secure Access
The battle over email authentication is mired in the minutiae oftechnical standards which only the geeks of the Internet EngineeringTask Force (IETF) could love. Yet, far from many of the esotericInternet standards battles that are blessedly irrelevant to most of ourday-to-day working lives, the fight over email authentication issomething that promises to make your life measurably better, or worse,in the very near future.
Fear not, gentle reader. You will be spared from sifting through IETFgroups charters and technical specifications. For, in a quiet corner ofa Thai restaurant in San Jose, Calif., I recently had a chance todebrief John Levine, chairman of the IETF's Anti-Spam Research Group,and author of numerous books including Internet for Dummies.
Wielding only peanut sauce and Thai iced tea, I was able to coerce Johninto giving me the Dummies-style insider's view of the emailauthentication wars. He explained why the leading proposal, Microsoft'sSender ID, self-destructed, and why today's most promisingauthentication proposal promises to lose your email and bring yourcompany's servers to a crashing halt.https://o1.qnsr.com/log/p.gif?;n=203;c=204634421;s=15939;x=7936;f=201702151714490;u=j;z=TIMESTAMP;a=20304455;e=i In late September, the IETF