Security threats Toolkit

'Clean up this Internet effluent now'

Tags:
Viruses

Jason Curtis ZDNet Germany

Published: 07 May 2004 16:10 BST

Current spam and virus solutions have arguably had limited success, primarily because they all tend to be reactive in nature. What are the most promising ideas for tackling the spam problem?
There are two answers to that question. The first side of it is, coming back to the reactive nature, you definitely need something that is proactive, or more accurately, very dynamic. For instance, the profile of spam changes not just by the day, but almost by the hour. You need something where the filtering rules and techniques both to eliminate spam and eliminate false positives are literally changing in real time as the profile of spam is changing. An Internet-level approach, where you have complete control of the environment, is much more tailored to deliver on this because detection profiles can be changing in real time without having to push out updates to clients in the hope that they get applied… you've got total control.

But more importantly, Internet-level scanning becomes much more pertinent when you look at the sheer volume of mail that's involved. Even if you had actual desktop prevention that was effective, the simple fact is that you've still got to receive all that mail to then decide you don't want it -- it's too late. By this time, your bandwidth and mail processing resources have already been tapped. The trend for the future, and obviously we are in this business, but we are seeing a trend -- not just ourselves, but also companies like us -- for Internet level protection to become the next big thing… to stop spam at its source before it gets anywhere near corporate boundaries or home users and erodes resources. Ultimately, as these Internet-level solutions become more prolific, the costs that spammers themselves incur will increase dramatically. As it becomes harder and harder for spammers to achieve results, they will look on to something else.

Internet-level filtering is exactly Messagelabs' business. This means that all your clients' email communication is monitored by you. Is this a potential cause for concern for corporate clients, specifically, that there is a third party out there that has root-level access to all mail that it sends or receives?
I think confidentiality is an initial concern, but this is a concept that has existed for a long time. All the same issues exist for any company's upstream ISP. What we need to do is make people think about the scanning concept more, and make great steps to give our customers the highest possible level of comfort and confidence. We are certified ISO 17799 and BS 7799. What that means is that we are externally audited about exactly how we manage our data and even who we can employ. We're also looking at providing an encrypted link from ourselves to our customers. Once we become the trusted party, we can also guarantee that the traffic between us and them is safe. We're looking at supporting the TLS (Transport Layer Security), which is emerging as the de facto standard for encrypted email. Messagelabs right now has a lot of financial, legal and even government customers, who themselves have performed a high degree of due diligence on our service.

Can you name some of your customers?
Our customers include the entire British Government, The Bank of New York, EMI Music, HealthPartners, StorageTek, Air Products and Chemicals, SC Johnson, Conde Nast Publications and Fujitsu, to name a few. There are other important clients who wish to remain nameless.

About Messagelabs:
Messagelabs is the leading provider of managed email security services with more than a 50-percent share of the managed email security services market. The company currently protects more than 8,000 businesses worldwide from email threats such as viruses, spam and other unwanted content before they reach their networks, without requiring additional hardware or software.