Anti-spam solutions are gaining visibility these days as big name vendors start to make more of a splash. Trend Micro issued an anti-spam announcement this month and Computer Associates (CA), Symantec, and Network Associates are expected to follow in the near future with announcements of their own.
Most commercial products actually on the market, though, are still from smaller, specialized start-ups. Meanwhile, some administrators are trying to save money for their organizations by turning to free solutions. A couple of years from now, will you still be relying on the same anti-spam strategy you’re using today?
Quite possibly not. By then, spam will have undoubtedly become an even larger problem than it is today. According to a recent survey by Symantec, 37 percent of respondents already receive more than 100 spam messages each week at work and at home.
Drawn by the beacon of customer demand in a bleak economy, major commercial vendors are hitting the market from a number of different angles, typically with new or enhanced “converged” products that combine spam fighting capabilities with antivirus or Web page filtering or both, while smaller vendors are striving to make a mark with unique bells-and-whistles like honeypots, collaborative filtering, and “e-mail challenges.”
Features Trickling Up from Freeware
In fact, some of the technologies now showing up in commercial products and services have trickled their way up from freeware counterparts. For instance, Vipul’s Razor, a free collaborative network for spam detection and filtering, forms the basis for Cloudmark’s commercial product.
Even if you’re unable or unwilling to spend a dime, there are countless anti-spam tools to choose from. Aside from SpamAssassin, a multi-featured anti-spam gateway written in Perl, popular freeware tools include Groovy Blackhole, a free spam and virus filter for all major SMTP servers, and SMTPblock, a tool for detecting SMTP relays on Unix /Linux servers, for example.
If you have money in your budget, the possibilities open up even more, although many of the new commercial offerings are only a few months old and others haven’t even left the gates yet.
This month, antivirus maven Trend Micro unveiled Spam Prevention Service (SPS), a subscription-based service that integrates anti-spam logic from Postini. Already shipping for Sun Solaris servers, SPS is expected to become available for Microsoft Windows by May and for Linux by June.
Meanwhile, earlier this year, Network Associates — the producer of McAfee antiviral software — purchased anti-spam maker Deersoft, with integrated products expected to follow shortly. New anti-spam offerings are reportedly under development at Symantec and Computer Associates as well.
CA’s upcoming product, eTrust Content Control, is now in beta. The new software initially combines e-mail and Web page scanning, but CA is considering integrating anti-viral capabilities in the future, too, says Ian Hameroff, CA’s security strategist. (One of the existing members of CA’s eTrust family is eTrust AntiVirus.)
A Web page scanning specialist called SurfControl has jumped into anti-spam and anti-viral filtering for e-mail. In terms of shipping products, SurfControl is currently “the only company with credible solutions for both e-mail and Web scanning,” according to Maureen Grey, research analyst at the GartnerGroup.
“Although the rules-crafting language and management tools are consistent, these are still two distinct products,” the Gartner analyst added.
Bigger Plans Ahead
Regardless of their current stature, many anti-spam vendors are mapping larger plans. MailFrontier, for example, brought out an anti-spam gateway earlier this year after taking its first step into anti-spam in 2002 with a desktop plug-in for Outlook.
MailFrontier’s Matador client for Outlook added support for Outlook Express, Hotmail, and IMAP in February. As differentiators for Matador, MailFrontier points to collaborative filtering — based on a conglomeration of user-identified spam — and “e-mail challenges,” meant to distinguish machine- from human-generated mail. “With the e-mail challenges, the sender might receive a picture back, and be asked to identify, ‘How many kittens?'” illustrates Grey.
Further down the road, MailFrontier envisions adding other capabilities for mail management, including policy management, lifecycle administration, and “trusted network and other methods of certifying inter-company and company-consumer communication,” according to Pavni Diwanji, company CEO and co-founder.
For its part, anti-spam vendor and service provider BrightMail lures spammers to specially set up e-mail addresses called “honeypots.” Another free tool, Jackpot, is an SMTP honeypot application for Windows.
As mentioned before, many commercial features either have roots or parallels in freeware products, yet many administrators prefer the relative simplicity of shrinkwrapped products or subscription services (or both). “We purchased SurfControl E-Mail Filter due to the overwhelming amount of spam clogging our network. The product works extremely well and helps protect our company from junk e-mail everyday,” claims Albert Rodriguez, IT Manager at ImageMaster Financial Publishing, Inc.
Illinois Tool Works, on the other hand, has installed two of Mirapoint’s MessageDirector anti-spam hardware devices, reports Marc Pilano, IT director for the Fortune 200 manufacturing firm. Pilano thinks the devices, which sit at the edge of the network, will help prevent integration and licensing issues that might come up if each company division deployed its own anti-spam solutions.
Beyond the free tools, vendors new to the anti-spam scene face considerable competition already. Aside from those companies already mentioned, administrators can choose commercial anti-spam hardware or software gateway solutions from BorderWare Technologies, Postini, CipherTrust, Clearswift, Elron Software, JunkJam, Tumbleweed Communications, and Sendmail, with its Mailstream Manager.
In the crowded anti-spam client space, Mail-Filters, Sunbelt, and MailWasher are a few of the companies not previously mentioned. Many are offering 30-day free trials.
Technologies Will Broaden, but the Field Will Narrow
Analysts agree, though, that the anti-spam tools available to customers will change dramatically over the next few years.
“By 2005, there will be no more than five leading providers of anti-spam logic. Winning in the anti-spam game requires a focused and specialized lab, not unlike an antivirus lab, where observations, algorithms, and heuristics are applied to identify spam messages,” says Gartner’s Grey.
“Vendors that become complacent will lose. Just as Tumbleweed, Sendmail, and many others welcome signature subscriptions from your choice of antivirus lab, so in the future such products will offer a subscription to anti-spam logic from one of the leading anti-spam logic vendors.”
Dan Keldsen, an analyst at Summit Strategies, predicts that some of the current anti-spam vendors will spin out in the direction of total e-mail management, adding features such as e-mail encryption.
Bayesian Filters and Machine Learning
Meanwhile, other new technologies will bubble forth from anti-spam research labs. Many products available today rely on wellworn standbys like black lists and keyword comparisons.
Newer products are adding heuristic (pattern-matching) analysis as well. One intriguing area of research right now revolves around Bayesian filters, which assign spam probabilities to individual words in e-mail messages. For example, the filters are capable of recognizing “words” that use a combination of numbers and letters — or a string of nonsensical punctuation marks — to evade detection by other means.
Researchers are also exploring various machine-learning technologies. At e-lab Bouygues SA in France, developers are creating Smartlook, an assistant for Microsoft Outlook aimed at learning users’ mail filing habits in order to detect and automatically filter out unwanted messages.
Whether you prefer free solutions or commercialware, you should keep your eyes peeled on what developers are doing. The anti-spam landscape keeps changing so fast that you never know what will crop up next.