Microsoft said it has completed the convergence of two specifications that are designed to help fight spam. The company has submitted the unified specification to the IETF standards body for consideration as an industry-wide means of e-mail authentication.
The specification, now called Sender ID, is a combination of Microsoft's Caller ID for E-Mail technology and the Sender Policy Framework (SPF) developed by Meng Weng Wong, co-founder and CTO of Pobox.com. The technology will be built into Exchange Edge Services, which is due out
"Given that the Can Spam Act doesn't seem to have any teeth, any partnership in the industry intent on making standards that we can all use is great," said Lee Benjamin, an independent consultant and chairman of the Boston Area Exchange Server Users Group.
If adopted by the Internet Engineering Task Force (IETF), the specification will provide one way to verify the source of e-mail to help cut down on domain spoofing, and to provide more protection against phishing schemes, according to Microsoft.
Microsoft said the specification will let receiving systems test for spoofing at the SMTP level, as originally proposed in SPF, as well as the message body headers, as originally proposed by Caller ID.