In Nemx's opinion, top five technologies to fight spam in 2004 are:
1. Reputable RBLs: Just using real-time blackhole lists (RBL) technology isn't enough. When using anti-spam software that checks the sending host IP address against RBLs, it will become more critical that a mix of highly credible, semi credible and aggressive RBLs are used to ensure that "true business email" is not tagged as spam. This will become increasingly important as more and more unreliable RBLs emerge in 2004 and mistakenly blacklist legitimate domains, or turn rogue and blacklist everyone, or face denial of service attacks.
2. Concept Filtering: Many new techniques to establish the intent of an email message have emerged, and for concept filtering to be truly effective, it will need to look not only at the message as a whole, but at the elements within that email. For example, when the email is trying to sell something, "prescription medications" are involved, "there is a Web site for more information", and a "mailing list removal request" is present at the end of the email. When these concepts are found within a message, the administrator has the confidence that it is truly spam and can be deleted, rather than quarantined. Filtering technology will now able to determine more effectively whether the message is spam and what concepts or themes are contained within the message thereby leading to the best course of action for the message.
3. Multi-Tiered Approach: To ensure that anti-spam software is effective, solutions will emerge that offer multiple lines of defense in the fight against spam. Implementing a minimum of two to three different approaches enables organizations to fight off new types of spam techniques and improve both end-user and administrator productivity by allowing fewer spam messages past the server-level.
4. Identify "Friendly" Domains: To ensure that email can be trusted to deliver mission-critical information, enterprises will use technology that automatically identifies known domains and safe entities based on the frequency of email sent and received. Friendly domains are those organizations, which are trusted business partners, so mail originating from these partners should be excluded from certain scanning processes to eliminating the risk of the message being lost. This should be an automated function, which does not require administrators to collect email and manually set up lists.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.