Overview An Evolution. Improving Trust, Confidence & Safety working together to fight the beast. Microsoft's online safety strategy
Size: px
Start display at page:

Download "Overview An Evolution. Improving Trust, Confidence & Safety working together to fight the e-mail beast. Microsoft's online safety strategy"

Transcription

1 Overview An Evolution Improving Trust, Confidence & Safety working together to fight the beast Holistic strategy Prescriptive guidance and user education, collaboration & technology Evolution of spam and online threats Technical Solutions Business & technical value of authentication via - IE 7 (RC1) Beta Solutions Windows Live Unsubscribe & Outlook 2007 Postmark Postmaster Services tools for ISPs & mailers Resources Craig Spiezle director strategy & industry relations Windows Live Platform Tues Sept 5, Microsoft's online safety strategy Evolution Of Compromising Trust, Identity, & Privacy Secure platforms, products and services strengthened by safety innovations, user guidance and industry cooperation efforts to help keep customers safe First spam from DEC 70% - 90% of all is spam Spam zero day threats Excellence in fundamentals across platforms, products and services Other securityenabling innovation Educational content and tools Authoritative incident response Safety in user experience Ecosystem Awareness and education Collaboration and partnership Public policy and enforcement First chain letter First spam ware becoming important Focus is on only Plain text Viruses are annoyance Very little Spam Little impact to commerce More important than phone Integrated and calendar Rich and large attachments Viruses disruptive to business Spam peaking as a major concern Phishing a growing concern Increasing dependence Cornerstone of collaboration Integrated communications Integrated shared workspaces Viruses spreading to devices Spam under control New social engineering exploits Message layer security, addressing regulatory, integrity and privacy requirements 3 4 Scoping the problem (1) 75% of corporate IP is stored in 95% of all phishing originated from 1.1 billions users worldwide 1.4 billion active accounts 2.5 billion by billion s sent daily Average corporate user sends/receives about 16.4 MB of data per day. This will rise to over 21.4 MB per day in 2010 Instant Messaging 944 million in 2006 to over 1.4 billion in 2010 Trends Image based spam up 200% since June, now in 30% of all spam (2) Malicious threats increased 20% last 30 days (2) 28,571 phishing campaigns reported in June (3) A multi-front battlefield: The user, the PC, , and browser protection Framework SmartScreen Anti-spam/phishing Me/my PC Browser protection Source: -- The Radicati Group, Inc., 8/30/06, (2) CipherTrust, (3) APWG 5 6 Microsoft Corporation. All rights reserved. 1

2 Impact of Spam at Microsoft Windows Live Mail Outlook Inbox Incoming Internet Connection Filtering SMTP Filtering Content Filtering Outlook Junk Challenge Hotmail - 4 Billion+ s per day / 90% spam Complete solution blocks over 95% of all spam Microsoft IT Department over 12 million inbound mails per day MSIT deployed every anti-spam feature of Exchange Server 2007 (beta) Inbound Connections Trash Connection filter Partner block and safe-lists Internal block lists Inbox User lists SmartScreen User filters Safe-lists/Sender Score Junk Establish score How does it work? Framework providing senders a drivers license Message transits one to many servers en route to receiver Improve reliability and confidence of electronic messaging Detect spoofing and forged mail, prevalent in 95% of phishing s Protect credibility and reputation of corporate brands and domains Help detect zero day security threats Inventory completed of sending domains Publish Sender Policy Framework (SPF) record in Domain Name System (DNS) User sends as normal Look up sender's SPF record in DNS Determine "PRA" or "Mail From" check Compare to legitimate IPs in SPF record Match neutral or positive score No match neutral or negative score Reputation added to score Optional user interface to users 10 SIDF Adoption Highlights Adoption over 39% of legitimate SIDF with positive reputation reducing False Positives to 0 & false-negatives by over 85% 3.5MM.com/net/org compliant domains (2) ~4.5MM TLD worldwide Over a dozen 3 rd party solutions Business value of SIDF with reputation Authenticated via SIDF is providing business value at no cost or impact to performance SIDF with reputation improves filtering Legitimate, SIDF-compliant mail realizes a substantial reduction in false positives Improves deliverability and resulting open rates High-volume "good" senders who publish, their false positives rates have effectively dropped to zero! False negatives on fail (implying spoofing) is ~85% lower than a random sampling of non-sidf mail Improving brand and customer protection Sources: Microsoft research 9/1/06 / (2) MarkMonitor Report 8/30/ Microsoft Corporation. All rights reserved. 2

3 Protecting Users : Second line of defense Internet Explorer 7 - Now in RC1 Beta! Windows Live Tool Bar / Vista Failed Sender ID Lookup Customer Benefits & Safeguards Privacy Unknown Me/my PC Suspicious Message Browser protection IE 7 / Windows Live Tool Bar Microsoft Phishing filter Dynamic protection against fraudulent Web sites 3 "checks" to protect users from phishing To date blocking nearly 1 million instances of users trying to access confirmed phishing sites Compares Web site with local list of known legitimate sites Scans the site for characteristics common to phishing sites Double-checks site with online Microsoft service of reported phishing sites dynamically updated Two levels of warning and protection in Internet Explorer 7 & Windows Live Level 1: Warn Suspicious Web site signaled Level 2: Block Confirmed phishing site signaled and blocked in IE7 Ensuring Privacy A Key Goal Does not transmit any identifiable information without user consent. URL information transmitted automatically by the Phishing Filter client cannot be traced back to the user s personal information. HTTP and HTTPS URLs automatically transmitted by the Phishing Filter client are limited to the domain and path only. All other data is stripped. Transmission of any and all URL information is over SSL on the Internet. Third party privacy audit Jefferson-Wells Audit Firm confirmed these claims. Link to Privacy Statement in IE7 Privacy Opt-In: Internet Explorer 7 First Run Experience On Demand Dynamic Protection Against Fraudulent Sites Two Levels of Warning and Protection Level 1: Warn Suspicious Website Signaled Microsoft Corporation. All rights reserved. 3

4 Dynamic Protection Against Fraudulent Sites Two Levels of Warning and Protection : Prevention of "false positives" a key goal Built-in online notification for individuals and Web site owners Level 2: Block Confirmed Phishing Site Signaled and Blocked Postmaster Services Unsubscribe beta program Services to help ISPs and Mailers improve deliverability and reduce outbound spam Junk Reporting Program (JMR) Instant feedback on user complaints for list maintenance & daily reporting Smart Network Data Services At a glance deliverability reports Measures of outbound traffic and complaints from your IP space Isolate compromised hosts / servers Escalations Windows Live Unsubscribe Goal to help users & legitimate marketers Best Practice developed with input from users & marketers How does it work? List Unsubscribe header (non-url) Requires users to previously identified the sender as legitimate, (allow list). Standardized approach as specified in RFC 2369 Does this apply to all mail sent? Applies to mail previously allowed or in the user s address book Junk Mail Reporting Tailored to large senders remove recipients from their lists. Clean-up distribution lists so that users receive wanted and senders aren t negatively affected by complaints. Senders receive any mail that is reported as junk mail. Info hmjmrx@microsoft.com Smart Network Data Services (SNDS) Monitor deliverability and traffic quality of outbound servers Free reports on your entire IP space Mail, spam, complaint, virus, and malware data Easy instant access, signup by IP or ASN Identify compromised hosts / users Use to feed automatic quarantine system Microsoft Corporation. All rights reserved. 4

5 Call To Action Maximize trust and confidence #1 Authenticate Inbound & Outbound Support the Trust Ecosystem #2 Business, Industry, Governmental, and Collaboration Summary Insure your outbound is compliant or Deploy IE 7 RC1 - Today test your site and pages More Information MSN Postmaster (for mailers & ISPs) #3 Develop innovative products and services using standards and best practices #4 Provide prescriptive advice Business and Consumers Microsoft Corporation. All rights reserved. 5

Similar documents
2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback | Do Not Sell My Personal Information