Study promotes challenge-response for anti-spam

Interactive system rated best blocker in questioned survey.

A study of anti-spam systems, using a bespoke scale to rate protection offered, has found the challenge-response method most effective, with a massive lead over managed service systems, rated second place, and with ISP-based filters trailing far behind the rest of the field. However, with the results receiving widespread coverage, both the methodology of the study and the neutrality of the researchers has been called into question by anti-spam experts.

The study was carried out by research and consultancy firm Brockmann & Company, who developed a 'spam index' system to rate the effectiveness of spam filters by measuring factors such as the amount of spam hitting inboxes and the amount of time spent dealing with each unblocked spam and each false positive. Their system gave challenge-response systems a rating of 160, with hosted services such as MessageLabs and Postini rated at 316, appliance solutions 349, software-based gateway filters 366, real-time black-listing 367 and ISP-based filtering worst at 442.

The surprising results have picked up considerable media attention, but have been questioned by some commentators, including blogger and SpamAssassin developer Justin Mason, who criticised the relative importance given to false positives, which were given about the same weight in the study as unblocked spam, rather than being counted as a much more significant problem as they are by many spam analysts. He also points out apparent links between the head of the research firm behind the tests and challenge-response vendor Sendio, and discusses the problems of extra traffic created by challenge-response systems contacting non-existent or unconnected addresses to query spam origins.

Mason's detailed analysis of the study is here, while a lengthy press release from Brockmann & Company is carried here and the full study can be accessed (after a registration process) here.

19 July 2007

Tags: challenge-response, research, spam.

del.icio.us

digg this

News


	Microsoft to publish security bulletins in CVRF format Standard will streamline process of reviewing patches. 22 May 2012 FBI warns against malware installed via hotel networks Malware poses as fake update of popular software. 09 May 2012 May issue of VB published The May issue of Virus Bulletin is now available for subscribers to download. 3 May 2012 Android malware served via compromised websites Malware downloaded automatically, but requires user permission to be installed. (1 comment) 03 May 2012 PayPal spam leads to exploit kit Clicking on links leads to Blackhole rather than phishing site. 02 May 2012 Subscribe \| View All virusbtn: UK hosting company 123-reg blames China-based attackers as DDoS attack was performed on its sites http://t.co/QTlwvcOc 2 hours ago virusbtn: Cyber attacks can take us back to the romantice age, @e_kaspersky says. And thats probably not a very romantic idea http://t.co/jHtdCCcl 3 hours ago Follow us

News Archive


	2012 December November October September August July June May April March February January 2011 2010 2009 2008 2008 2007 2006 2005 2004 2003 2002 Subscribe \| View All

News


	See also Calendar of Events Polls

Quick Links

Poll

Does your company allow you to use a personal laptop/mobile device to access company resources?
Leave a comment
View 2 comments

VB2012


	VB2012 will take place 26 - 28 September 2012 at the Fairmont Dallas hotel, Dallas, TX, USA.

Virus Bulletin currently has 225,280 registered users.

Fighting malware and spam

Study promotes challenge-response for anti-spam