Big Internet Players Propose DMARC Anti-Phishing Protocol

judgecorp writes "Google, Microsoft, PayPal, Facebook and others have proposed DMARC, or Domain-based Message Authentication, Reporting and Conformance, an email authentication protocol to combat phishing attacks. Authentication has been proposed before; this group of big names might get it adopted." Adds reader Trailrunner7, "The specification is the product of a collaboration among the large email receivers such as AOL, Gmail, Yahoo Mail and Hotmail, and major email senders such as Facebook, Bank of America and others, all of whom have a vested interest in either knowing which emails are legitimate or being able to prove that their messages are authentic. The DMARC specification is meant to be a policy layer that works in conjunction with existing mail authentication systems such as DKIM (DomainKeys Identified Mail) and SPF (Sender Policy Framework)."

Re:Why a new protocol?

[Anonymous Coward]

It's too 'open' and therefore, easily crackable.

Re:And the downside is?

[del_diablo]

Well, there is a certain minor downside...... [xkcd.com]

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re:Where is that fixed font check box post?

[alvinrod]

Someone found where he lived and burned his house down.

Re:Where is that fixed font check box post?

[Jaqenn]

And they did it with a lemon! They got their engineers to invent a combustible lemon that burned his house down!

http://www.youtube.com/watch?v=7mUC-262Xr4 [youtube.com]