Filter looks at the day's top technology news through snapshots and analysis of what the world's media outlets are covering. Washingtonpost.com's new Mon.-Fri. feature is penned by technology reporter Cynthia L. Webb. If a technology story breaks, a company falters or triumphs, or there's a new trend in technology, Filter wants you to know about it.
By Cynthia L. Webb washingtonpost.com Staff Writer
Wednesday, June 16, 2004; 9:47 AM
The Federal Trade Commission yesterday said it rejects the idea of creating a national do-not-spam list, giving U.S. e-mail users a clear indication that even Uncle Sam is stumped at how to stop the rising tide of junk e-mail.
"Consumers will be spammed if we do a registry and spammed if we don't," said FTC chairman Timothy Muris, as quoted by The Washington Post. Muris's remarks came on the same day that the commission reported to Congress that creating a no-spam list would in fact lead to more spam in our e-mail queue, and could even help pedophiles target children. "I wouldn't put my e-mail address on such a list," Muris said, according to The Associated Press.
The Post wrote that "[u]nderlying the no-spam registry question is a larger debate over whether the new federal anti-spam law, known as the CAN-SPAM Act, is working. Industry estimates vary, but spam accounts for between 60 and 80 percent of all e-mail traffic, an increase since the law took effect in January. In a survey of chief information officers at nearly 700 companies, 39 percent of 141 respondents said fighting spam will cost their firms more than $100,000 this year. The survey, sponsored by the Chief Information Officer Executive Council, concluded that the act was ineffective. A majority of respondents, 55 percent, favored a do-not-spam registry," the article said.
• The Washington Post: FTC Rejects Creation of No Spam Registry (Registration required) • The Associated Press via The Washington Post: Feds Decline To Create 'Do-Not-Spam' List (Registration required)
• FTC report on spam (PDF)
A number of experts have soured on the list idea. "Jim Nail, an analyst with Forrester Research, said a 'do not e-mail' registry was a non-starter because the economics of telemarketing and spam were different. Sending out bulk e-mail is virtually free, and spammers are often paid by advertisers on the number of e-mails they send to verified addresses," The Financial Times reported. "You are dealing with a bunch of disreputable scofflaws who just don't care and who can't easily be tracked down. It just won't work," Nail told the paper.
• The Financial Times: Registry To Discourage Spam Put On Hold
Meanwhile, many tech heavyweights have been trying to hammer as many nails as possible into the list's coffin. "The major Internet e-mail providers, including Microsoft Corp., America Online Inc., Yahoo Inc. and EarthLink Inc., also oppose the registry and have been working on a unified approach to authentication for several months. The companies are hoping to announce a formal agreement soon," The Washington Post reported.
The Chicago Tribune noted "Tuesday's FTC decision was well received by industry players such as Microsoft Corp., which had opposed a do-not-spam registry. 'A "do not e-mail" list would be a lot like a "do not rob this house" list because the criminals would just take the list and run with it,' said Meng Wong, co-founder and chief technology officer of Pobox.com, a Philadelphia-based e-mail company. Pobox and Microsoft recently joined forces to merge their proposals for an industry standard aimed at stopping spoofing. Their proposal will be published next month."
• The Chicago Tribune: Don't Look For Do-Not Spam (Registration required)
Consumer rights groups want to make sure the FTC does not drop the ball on spam, despite its rejection of the list. The groups generally agreed with the trade commission's report but said regulators must also place a larger priority on catching and prosecuting spammers. Consumers Union, publisher of Consumer Reports magazine, said it supported a long-term solution that includes 'a combination of technological and legal action to fight unwanted e-mail,'" The Kansas City Star reported. "Jim Guest, president of Consumers Union, said the consumer group agreed that 'e-mail authentication is a critical step in the eradication of spam.' But, he said, 'in order to fully combat the problem, the FTC also needs to devote sufficient resources to tracking down and prosecuting violators of the law.'"
• The Kansas City Star: National No-Spam Listing? No Way (Registration required)
But Sen. Charles Schumer (D-N.Y.), one of the list's supporters, blasted the FTC. "We are very disappointed that the FTC is refusing to move forward on the... registry," Schumer said in a written statement, picked up by washingtonpost.com. "The registry is not the perfect solution but it is the best solution we have to the growing problem of spam and we will pursue congressional alternatives in light of the FTC's adamancy."
• Washingtonpost.com: FTC Says List Will Not Reduce Spam (Registration required)
• Reuters: 'Do Not Spam' List Will Not Work – FTC
So Now What Do We Do?
Well, don't fret -- that's what regulators and the industry tell us. "Instead of starting a registry, Muris said, the FTC would first push the private sector to agree on a method for electronically authenticating senders of e-mail, which would cut down on spammers' ability to hide their identities and locations. Muris said such authentication is a necessary precursor to any no-spam registry," The Washington Post reported. The AP wrote: "If new authentication plans fail to emerge, the FTC will convene a federal advisory committee to determine whether the government could require Internet providers to adopt one."
Right now, the mightiest weapons in the arsenal are technology, lawsuits and fines. Microsoft and Pobox's "proposal calls for participants to publish information about their outgoing mail servers, such as Internet protocol addresses, using a standard format. This effort will allow systems that receive e-mail to test for spoofing. ... Some 20,000 organizations, including Google, AOL, Amazon and Earthlink have registered to participate," the article said. "Yahoo Inc. is promoting another solution called DomainKeys, a draft of which it submitted to the task force. Wong predicts the Microsoft/Pobox approach will be the first wave of anti-spoofing technology, followed by Yahoo's method. 'We're a lot further along than we were a year ago,' Wong said," The Chicago Tribune reported.
