Improving domain blacklisting - spam mail, Computer Network Security

Improving domain blacklisting:

Current domain blacklisting techniques are not very effective as spammers keep replacing blacklisted domains with newly registered domains. Also, the IP blacklist only focuses on the sending IP addresses of spam emails, which is not effective against botnet-generated spam.  So,  to combat this problem the idea is to cluster spam domains based on their hosting IP addresses and associated email subjects and identify the most dominant hosts rather than the  common content-based spam detection research approach. The goal is to identify spam hosts that are heavily used by spammers to host many spam domains and account for a large number of spam messages.

 For blacklisting, The URLs within the spam emails are analyzed and scrutinized and reported to the blacklist. Further incoming emails which contain any of the blacklisted domains will be blocked. As a future view, the target is to build IP blacklist and domain blacklist that can be reported to law enforcement agents. Currently, it is done by SQL queries. Automating this process by having a computer program query the database and generate reports would be beneficial for spam reduction. This would reduce the time taken in analyzing the domains to be blacklisted and hence would reduce the spam mails.

Posted Date: 2/28/2013 7:04:06 AM | Location : United States







Related Discussions:- Improving domain blacklisting - spam mail, Assignment Help, Ask Question on Improving domain blacklisting - spam mail, Get Answer, Expert's Help, Improving domain blacklisting - spam mail Discussions

Write discussion on Improving domain blacklisting - spam mail
Your posts are moderated
Related Questions
1.  We used the National Vulnerability Database. Select a recent vulnerability from that Database and analyse it from the following aspects: Criticality level Impact in

INTRODUCTION TO SECURITY AND PERSONNEL When implementing information security, there are several human resource issues that should be addressed. They are •    Positioning and n

Q. Secure routing Protocols for Wireless Sensor Networks? A secure routing information protocol enables effective implementation of authentication and integrity checking defens

Discuss how developers should apply the following countermeasures to improve the security of their code:

IDS Intrusion is a attack on information assets in which instigator attempts to gain entry into or disrupt normal system with harmful intent Incident response is an identificatio

According to the case, The EZ Company introduced a new technology, focusing on the principles of informationintegration and visualization. The company started negotiatinga saleto a

(a) Describe briefly the difference between flow control and congestion control in relation to a connection-oriented protocol such as TCP. (b)  What is the initial rate of data

Base lining •    Organizations do not have any contact to each other •    No two organizations are identical to each other •    The best practices are a moving target •    K

CARRIER  SENSE MULTIPLE ACCESS (CSMA) There is no central access management when computers transfer on Ethernet. For this solution the Ethernet employs CSMA to coordinate tran

Q. Attacks on wireless network WSN are vulnerable to attacks which compromise the integrity of the WSN nodes by decreasing the nodes' fault tolerance capabilities, data distrib