login
password
HOME
Knowing
Cadses Area
Internationalization
Cooperation
Internet & E/Business
Education
Virtual Clustering
Event & Expos
Online experts
Cooperating
Overview
Submit
Search
Re-validation / Elimination
Distribution
Conditions
Contact
Communicating
Emeetings
Learning
Sharing
Wood
Mechanics
Tourism
Plastics
SEARCH
Advanced search
Guide
Help
Contacts
Credits
Inde Project
Services
Cavirc.net Partners
Cavirc.net
/
Knowing
/
Internet & E-Business
/
SECURITY & PRIVACY
/
Email security in depth
<!--BeginDoc 62506134--> <PRE> <span class="htmla_testo"><p><span class="htmla_titolo">Privacy</span></p><p>If message's content is not particularly private it could be enough to rely on the fact that nobody will try to intercept that particular message among the big email flow in Internet. On the other hand the risk of spreading confidential informations has to be considered. In this case cryptography can give us support: the easiest way to use cryptography is by common email application (i.e. Outlook) that have it embedded. How it works:</p><p>- first of all we must receive a signed message from the receiver of our encrypted messages: our email software (mostly automatically) stores the certificate identifying the person and its associated email box;<br />- at the same time we must have our own signature certificate associated to our email account; <br />- at the end we send the message specifying that it has to be encrypted. The system automatically encrypts the message so that it can be read with the sender's and the receiver's certificate.</p><p>Be careful: cryptography prevents from detecting and deleting virus contained in the message.</p><p> </p><p><span class="htmla_titolo">Spamming</span></p><p>Many users sometimes have to run an obstacle race in reading email because of undesired messages' presence (SPAM). Those messages are usually commercial offers or "chain letters" and in many cases have unpleasant, offensive or obscene contents.<br />Some email services include specific tools to contrast spamming phenomenon, the so-called Anti Spamming Filters. At the moment this type of tools don't seem completely reliable. <br />We list some examples of possible situations:</p><p>- some tools are based on "black lists" of domains from which in past came a lot of unwanted messages: all messages from these domains are removed; but this "cleaning" could delete even some important message from trusted senders (just because messages come from black-listed domains); plus the lists can be incomplete compared to the extent of the phenomenon and allow through undesired emails.</p><p>- some tools scan messages' texts searching for common expressions in particular sorts of undesired email; in this case too we could loose messages from trusted senders: words present in undesired message can be used in normal messages in other context; moreover, unwanted messages can use a professional language undetecteble by analysis tools.</p><p>- some systems erase email containing particular attachment types, or messages coming from same sender in a brief period of time. In this case it seems clear that important email communications could be cancelled and unwellcome messages could be left out.</p><p>- some systems use above check tools finally don't delete messages, just marking them as "probably undesired" emails. This way service benefit is very modest because we must read and choose which messages have to be removed.</p><p>- some systems allows users to choose email addresses from whom they don't want receive emails anymore. Again this measure is not enough because spamming actions generally use alway different accounts.</p><p>Conclusions: at the moment there's not a real complete anti-spamming software; in any case spamming is considered a crime that can be reported to the postal police.</p><p> </p><p><br /> </p></span></PRE> <!--EndDoc 19639601--> <BR>
