The Future of Email

By Kevin Laws on November 3, 2003 10:10 AM | | Comments (8) | TrackBacks (4)

How spam will deliver the future of email to Microsoft.

While people may debate the death of email, there is no question that many email servers are already overloaded with spam. Current spam solutions are beginning to address the problem, but so far they all suffer from the arms race issue - as fast as we come up with new ways to fight spam, spammers are finding new ways to deliver it to us.

While the functionality of email will certainly continue, the current system must change. When the change comes, it will deliver the future of email to Microsoft.

Open standards established email, but enabled spam

One key enabler of spam is that current standards mandate an open system. Everybody can add themselves to the system with no cost or central authority. This has worked very well to encourage the rapid growth of email and its network effects, and is why nearly everybody on the planet uses email.

However, the free nature of open email neuters many blacklists - several anti-spam groups track servers that are run as "open relays" and are the source of significant spam. The spammers, however, simply hop to a new server as each server is blacklisted. It costs nothing but a little bit of time.

Closed email cannot reach critical mass

Closed systems are great for controlling access and ensuring identity. Some companies are moving to closed IM systems for business-critical communications. Recently, AT&T announced a plan to create a closed email system for its employees and business partners. They were going to create a "whitelist" of servers at their partner companies that were allowed to send them email rather than using the constantly changing "blacklist" of bad servers.

Of course AT&T cancelled the plan promptly. In additional to the logistical troubles of maintaining such a list, you can't apply an 80/20 rule to email. 80% of useful emails may come from your major partners, but another 20% may be from outside. Any anti-spam company can tell you that you've got to target lower than 1 in 1000 false positives to be acceptable to customers. A new closed email that some have proposed will never have the critical mass to take on the current email system. It will always need a gateway to the outside world, and that gateway will always get hit with spam.

Halfway closed works

Fortunately, there is a way out.

After all, there's an interesting characteristic of every spam fighting solution. None of them are as effective as they could be at detecting spam, because each is working very hard to avoid false positives.

It follows, then, that if you could remove a great majority of the "good" email from consideration, the remaining email could be subjected to much more stringent tests while still maintaining the same low false positive rate. The new version of Microsoft Outlook applies this logic - it has a spam filter built in, which includes the option "automatically deliver mail from anybody in my address book". As soon as they figure it out, Microsoft will extend that to include more subtle gradations like "anybody I've ever sent mail to is very likely not to be a spammer", among other variations.

To use a specific example, take 100 messages, 50 of which are good. Your spam filter takes out over 90% of the spam - leaving you with 4 ads for viagra. It lets through 48 of the good ones, leaving you with 2 missed emails.

If you were able to identify that 25 of those 50 messages were definitely good (your whitelist), then you'd only subject the remaining 25 to the spam filter. That leaves you with 1 missed email - or, if 2 was OK, you could double the effectiveness of the filter and only get 2 ads for Viagra.

The upshot is a direct benefit - even if your network is semi-closed, just subjecting outside emails to more stringent spam tests, it works. The more emails come from people in your closed network, the more stringent the spam tests can be and the less spam you will get from outside of it. In other words, the whitelist does not need to be perfect - it just improves the larger it gets.

Economics comes to the rescue…

So how does one create the server whitelist?

One solution is to charge people to participate in the system. Anybody who pays a fee is automatically on the whitelist. Several companies (such as the Bonded Sender program) are working to provide this solution to legitimate bulk emailers (e.g. travel specials from United Airlines, etc.). United Airlines pays a bond to the company, which they lose if they actually send any significant quantity unsolicited email. The company then provides this list to all of the anti-spam companies so they can properly distinguish bulk email from spam.

It is a brilliant economic solution, since it imposes an incremental cost only on spam. Of course you could register with the service and send spam, but then you'd forfeit the bond and have to get a new one. However, if you register with the service then send only legitimate emails, there is no incremental cost - only the fixed one-time cost of putting up the bond in the first place.

This could extend to companies in the Fortune 500 who wish to deal with each other as well (or AT&T and its suppliers), but so far nobody wants to shell out the extra cash to participate. Even the bulk emailers will soon have other free or less expensive options via Project Lumos, a similar effort put forth by a consortium of ISPs, or Cloudmark's registered sender system.

…but economics also delivers the world to Microsoft

However, corporations are already shelling out big bucks for email - specifically for Microsoft Exchange or IBM/Lotus which between them have 75% of the corporate market.

Microsoft could just provide a stamp on each outgoing message (think public key cryptography) identifying that it came from a specific exchange server. This would be verified with Microsoft, which would provide a whitelist of valid exchange servers to every anti-spam company.

That's all they would need to do. If somebody then used an MS Exchange server to send spam, it would get blacklisted. Unlike normal blacklisting of open relays, the spammer couldn't just switch to another server. They'd have to buy another one from Microsoft for significant cash. This has the same effect as the bonded email program - incremental spam costs money but incremental legitimate emails do not.

40% of corporations use Microsoft servers for email. That would immediately remove 40% of all legitimate corporate email from consideration as spam, and basically double the effectiveness of anti-spam solutions overnight.

This is where the twist comes in. At the same time as the effectiveness of anti-spam solutions increases, anybody NOT using Microsoft Exchange to send emails suddenly has twice the number of their legitimate emails rejected by anti-spam solutions as their effectiveness is cranked up.

At that point, think of how valuable it is to a corporation to purchase Microsoft Exchange instead of a competing server. After all, if you purchase a competing server, you aren't part of the "closed network" and your emails are subject to significant filtering. By purchasing MS Exchange, your outgoing emails are suddenly treated as good, and you have eliminated most of your incoming spam problem as well. For consumers, they could automatically provide a rate-limited equivalent with each version of Microsoft Outlook (e.g., only the first 500 emails each day are stamped as valid).

More importantly, Microsoft now benefits from a strong network effect. The more people join the network, the more valuable it is to be inside and the more painful it is to be outside the network, as people continue to tighten the spam engines while maintaining the same low false positives rates.

Microsoft is already thinking about solving the problem of identity by identifying servers rather than individuals. They are trying it out with a consortium of ISPs on the consumer side, where they don't dominate.

Just don't expect Microsoft to use the consortium approach on the corporate side, where they have the dominant share.

The coup de grace…free anti-spam solution

It's not a perfect world for Microsoft yet, however. As it stands now, IBM/Lotus could also do the same thing. Since they have 35% market share, if they also published their server list, anti-spam companies would use it as well.

So Microsoft must do one thing first - something they are quite experienced at doing. They must incorporate the anti-spam solution free into the next version of MS Exchange.

This has several immediate implications: Microsoft will be in the market for one or more of the most effective server-side or outsourced anti-spam solutions (are you listening Cloudmark and Postini?). Anybody not acquired had better find another business, since MS Exchange customers will get the service for free. Finally, Microsoft's share of the corporate email market will jump significantly - perhaps IBM's as well, if they adopt a similar strategy fast enough.

So the world will once again be reasonably safe from spam overload, but the price is yet another area of Microsoft domination. Either alone or with IBM, within 5 years Microsoft will end up owning most of the corporate email traffic in the world.

Categories

Consumer Internet & Media , Internet Infrastructure , Software

4 TrackBacks

Listed below are links to blogs that reference this entry: The Future of Email.

TrackBack URL for this entry: http://ventureblog.com/cgi-bin/mt/mt-tb.cgi/156

» The Future of Email from *scottstuff*

VentureBlog has an interesting bit on spam, claiming that spam is going to give Microsoft control over the entire email server market. The logic is kind of interesting; basically it boils down to using your Exchange server license as a bond against sen... Read More

Tracked on November 3, 2003 3:29 PM
» how spammers are hacking spam blocking... from Teal Sunglasses

an interesting look at how spammers are working to hack spamblocking.... One fell into my mailbox where the spammer clearly botched production, instead leaving his HTML for all to see. <BODY bgColor=#ffffff> <font color="white">sabine wahl ... Read More

Tracked on November 3, 2003 8:50 PM
» Bonded Future for E-Mail? from Unbound Spiral

Interesting thoughts on the future of e-mail. See the link to Bonded Sender and the Economist article on this approach to putting a "price" on e-mail. VentureBlog: The Future of Email While people may debate the death of email, there... Read More

Tracked on November 4, 2003 11:10 AM
» VentureBlog: The Future of Email) from Roland Tanglao's Weblog

(SOURCE: VentureBlog: The Future of Email )- The future of email is not Microsoft. Read More

Tracked on November 4, 2003 11:47 AM

8 Comments

spdemac said:

Nice thought but the problem with the latter part of your idea is that Microsoft's email solutions are inherently buggy and the cause of massive amounts of unwanted email.

So if one was to simply accept messages from their product based on "their" assertion that is was a good message, you would be run over by waves of spam and virus infected messages.

Btw they already bought up the RAV Antivirus and Antispam company for inclusion in their products and services.

November 3, 2003 11:36 AM
Peter Fryscak said:

Some very interesting ideas. One offshoot of existing and future spam protection is that spammers are now working with hackers. Already there are some prototype systems that distribute spam to compromised systems, which then send it on to their email lists (a la some recent viruses). So instead of getting viruses from your friends you now get spam from them and it probably passes through, because they are on your whitelist. But it does raise the ante, because virus proliferation is generally an illegal activity.

November 5, 2003 8:03 PM
Justin Mason said:

Re: whitelisting based on address book: this is trivial to subvert, and spammers already are doing this. A spammer simply has to forge the spam with your address in both the From and To headers; pretty much everyone has *their own address* whitelisted.

Next, what Peter Fryscak said. ;)

And finally, I don't see any MS anti-spam effort "delivering the world" to them; the world of SMTP is a whole lot bigger than MS, so a proprietary solution that can't be used by some of the trickier mail sources -- like e-commerce receipts from Amazon etc. -- will just be a small part of spamfiltering.

As one of the authors of SpamAssassin, we have already had several ways to detect mail from Exchange servers. The fact is, though, that these are not the mails that commonly match as false positives; automated sources of email like e-commerce systems are a lot more common. *That's* the part that needs to be solved. Unfortunately, very few of those are delivered through an Exchange server...

November 7, 2003 9:41 AM
Martin Tobias said:

Of course the real thing that will deliver the e-mail market to Microsoft is to change SMTP protocol all together. Many are promoting a New draft of AMTP. If you change the protocol, you have to upgrade all the servers and gateways! That is what Microsoft really wants.

I personally don't believe people will stomach that kind of change. Or hand it to one vendor. They need something that provides increased accountability on the existing protocol. Look for some new ideas from Cloudmark.

November 10, 2003 3:59 PM
Peter Wright said:

Of course, Microsoft will continue to innovate through spam and virus issues, but the key force providing balance to their spreading mass is not technological, rather sociological and psychological. Even in the corporate ranks, the tide is beginning to turn as Microsoft assets are being replaced by assets based on standards and more compelling economic models. The evolving drama pits Microsoft against those in the economy who are disgusted even more by the thought of technical monarchy than the trials of hundreds of spam email messages per day and virus threats growing in regularity. A world handed to Microsoft on a silver platter would be just as dangerous as one overrun by hacker/spam/virus threats in cyberspace.

Microsoft's plays an important role in the development of technologies in enterpries, but they cannot overshadow the ongoing development of open standards and implementations of which that encourage a strong degree of cooperative system design in the midsts of the competitive marketspace.

November 10, 2003 4:43 PM
anon said:

tell me why exactly can't spammers buy or steal a copy of ms exchange and install it?

November 12, 2003 1:14 PM
Tubby Bartles said:

Ummm...did you read the article? I think that was the entire point. If the spammer buys MS Exchange and uses it to spam, then that exchange server gets blacklisted and they need to buy another one. This creates a cost to spam but not to normal email.

November 12, 2003 1:21 PM
higuita said:

one big issue you are forgetting is that many openrelays are exchange servers...

so now one brand new exchange server, with a valid key is used to send spam by some one... every one get it and that mail server get blacklisted... so now that company have to buy _another_ key even after they fix the openrelay, because nobody accepts emails from the old key... some time after some user gets a brand new virus or a brand new trojan/backdoor... so the cracker use this user computer to send spam to the exchange server (with a new, valid and expensive key) and make it spread the spam... again the key is blacklisted and the user computer gets clean from the virus/trojan/backdoor and the company must buy yet another new key

now add to the spam the email worms that we get more and more these days... in a few day all the exchange servers would be blacklisted if someone on the company would catch the virus... and yet again a new key (boy, M$ would be happy 8)

spammers right now are scanning the net for openrelays, but also for openproxies that can be use as jump points to the ISP email servers... also there are rumors that half of the virus/worns these days are being use by the spammers to create remote access points to send spam, from any network they like

also you say that creating a whitelist will make nom exchange servers to get they valid emails rejected more and more... this isnt true, a whitelist will _only_ safe email from being wrongly rejected, it will not make valid one that were accepted before start to fail just like magic or to "maintain the same spam ratio as before"

finally, what to do with the emails that arent in the whitelist? you cant rejected because corporate servers arent the internet, they are really less that about 30% of the net, the many and many ISPs, the educational networks, the small companies, the gov and millitar networks, the webhosting companies and more are the internet and you cant reject emails from them all

build very strong filters will make the samething as reject then all, make weak filters and you still get the spam and make the _expensive_ keys useless


how about fake keys? there are fake key builders for most games and utils, why cant they forge the MS keys? sure, the server could check with MS with key are valid or not, but you are putting alot of power in the microsoft hands, they can say who can and who cant send emails, and on the other side, who can or not receive your emails...and all that on real time... microsoft already almost control the desktop market, isnt very good to give it bigbrother powers also

November 18, 2003 12:01 PM

About this Entry

This page contains a single entry by Kevin Laws published on November 3, 2003 10:10 AM.

Lessons Not Learned was the previous entry in this blog.

Geographic Network Effects is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Search

Categories

Conferences (68)
Consumer Electronics & Gadgets (39)
Consumer Internet & Media (81)
Entrepreneurial Success (32)
Hardware & Systems (21)
Internet Infrastructure (32)
Legal Issues (32)
Management Issues (55)
Podcast (7)
Presenting Your Company (39)
Semiconductors (7)
Software (35)
The Deal (21)
The Economy & Finance (57)
VCs Around The Web (29)
VentureBlog Administrative (14)
VentureCast (9)
Wireless & Telecom (25)

Archives

Creative Commons License
Subscribe to feed Subscribe to this blog's feed
Subscribe to feed Subscribe to VentureCast
Powered by Movable Type 4.0rc4