Consultant - Programmer - Strategist
Joined on May 24, 2014 – United States
Total Post Views: 18,300
In February 2015 Jones took on the role of Executive Director of DMARC.org, an initiative of the Trusted Domain Project. Prior to that, he spent nine years as an architect, strategist, and manager at Bank of America where his responsibilities included messaging, the social enterprise and online collaboration tools. He has participated in Internet standards efforts and spoken at MAAWG, RSA, SANS, and USENIX conferences.
Except where otherwise noted, all postings by Steve Jones on CircleID are licensed under a Creative Commons License.
Phil Zimmerman's Pretty Good Privacy (PGP) and its offspring have been encrypting and decrypting email for almost 25 years -- but require enough knowledge and determination to use them that adoption has never taken off outside the technoscenti. Now initiatives from several quarters aim to fix that -- but will it all "just work," and will end users adopt it even if it does? more»
You might expect that the IT department or security team knows who's sending email using your company's domains. But for a variety of reasons these groups are often unaware of many legitimate senders -- not to mention all the bad actors. Fortunately you can get a more complete view by using DMARC's reporting features. How does it happen? Product teams managing a new product launch or customer survey hire marketing consultants and Email Service Providers (ESP)... more»
DMARC is extremely useful, yet I've heard some vendors are putting their implementations on hold because of the IETF DMARC working group. You really shouldn't wait though -- it's been in wide use for nearly three years, enterprises are looking at DMARC for B2B traffic, and the working group charter is limited in it's scope for changes. Let's compare this to a similar situation in the past. more»