- Microsoft Windows chief decries standards grandstanding
- The 5 best, and 5 worst, features of Google Chrome OS
- Federal government using PS3 to crack pedophile passwords
- 10G Ethernet cheat sheet
- Top 10 free Windows tools for IT pros, at a glance
Mich Kabay takes a high-level view of security issues and provides resources to help safeguard your corporate and personal security.
More from Jamie de Guerre, CTO of Cloudmark. All of the text below is de Guerre's own material with minor edits.
Slideshow: Famous last words about spam
* * *
There are many innovations to choose from, many of which are back-end changes that are not visible to the public. Cloudmark also has several new products and services coming out this year, which are yet to be announced.
However, the one I’m personally most excited about is Cloudmark ActiveFilter. The core battle between spammers and antispam vendors comes down to a race against time. Spammers are trying to get as many of their messages through as possible before the antispam vendors discover their messages to be spam. Essentially, ActiveFilter changes the game on spammers and takes the speed battle away.
Of the spam that Cloudmark misses, we typically only miss it by seconds or minutes (usually seconds). However, the majority of the time, that message is delivered to a user’s mailbox when the user is either not logged into their e-mail or is not reading their e-mail at that exact moment. If we were still able to filter the message within seconds once we discovered it as spam, the user would never have to see the message or know that it was initially missed!
What prevented this from happening in the past were performance considerations. In general, the mail-store server is an extremely loaded system in a customer environment, whether it is a Microsoft Exchange server or a large-scale server used by a service provider to host millions of mailboxes. Attempting to re-scan every message on the mail store every couple of minutes, or worse yet every few seconds, is nowhere near possible - it would quickly overload the system and degrade users’ ability to access their legitimate e-mail.
The innovation with ActiveFilter is that we are able to filter these messages after they arrive without needing any re-scanning and without any significant load on the mail store. We track a small piece of information about each message delivered to the mail store inside the ActiveFilter system, along with the fingerprints generated for the message. If we later discover one of those fingerprints to be spam, then, and only then, do we contact the mail store to take action on that particular message.
M. E. Kabay, PhD, CISSP-ISSMP, specializes in security and operations management consulting services. CV online.
Rss FeedRss Feed
The Leader in Network Knowledge
Comments (1)
The state of spam 2009, Part 4By www.eradicatespyware.net/blog on April 21, 2009, 6:41 amThats nce update on Cloudmark ActiveFilter by author. i agree with author on this view. Thanks of info and update
Reply | Read entire comment
View all comments