SOURCE: SpamTitan


June 08, 2009 17:33 ET

SpamTitan Email Security Survey Clears Up Sender Policy Framework (SPF) Misconceptions

SPF Is Not a Silver Bullet for the Prevention of Spam

BOSTON, MA and GALWAY, IRELAND--(Marketwire - June 8, 2009) - SpamTitan, a leading producer of email security solutions, today announced the results of its industry survey of some 500 users of email security solutions exposing several misconceptions around Sender Policy Framework (SPF).

To dispel any misleading references of SPF's use, it is important to define SPF and its key purpose -- an anti-forgery approach in which the Internet domain of an e-mail sender can be authenticated for that sender, thereby discouraging spam mailers who routinely disguise the origin of their e-mail, a practice known as e-mail spoofing.

SpamTitan's recent survey uncovered that some 43% of small and medium size businesses (SMBs) were under the misconception that SPF is a method that can be used to stop spam from being sent using unauthorized domain names. Approximately 52% of organizations surveyed were not aware that SPF can only stop spammers from forging the "From" field in the e-mail and that SPF does not stop spammers from sending e-mails from a domain of which it is a member.

"While SPF is effective in stopping email spammers from forging the 'From' fields in an email, SMBs should absolutely not consider using SPF as an anti-spam solution," said Ronan Kavanagh, SpamTitan President."SPF has proven not to be effective as a standalone anti-spam solution and treating it as such is leaving organizations completely vulnerable to such email security threats as viruses, trojans, phishing, malware in addition to spam."

One of the main aims of the SpamTitan survey was to help quantify the usefulness of SPF to the average end user, given the current deployment of SPF in the Internet. In the US alone, approximately 60% of the services and websites regularly accessed by users are SPF-enabled.

Backed by a 2009 Nokia Research survey, 51% of the tested domains worldwide specify a SPF policy. In the US, 500 of the most popular domains were tested (Google, Facebook, YouTube, etc.) revealing that only 59.5% of these highly regarded domains specify a SPF policy.

"SPF is not a silver bullet for the prevention of spam, and while far from perfect, it is a useful tool in the arsenal of tests that should be used to help reduce spam. SPF should be used in particular for helping to reduce spam that is sent using forged email addresses," explains Sean Doherty, Chief Technical Engineer with SpamTitan.

About SpamTitan

SpamTitan, the global provider of sophisticated enterprise-level email security solutions, offers small and medium size businesses the most comprehensive protection from email threats, including SPAM, viruses, Trojans, Phishing, Malware and other unwanted content. SpamTitan's unique approach in utilizing next-generation virtualization software, eliminates the need for unwieldy hardware, giving customers unparalleled flexibility, versatility and capability but at an affordable price. Integrating best of breed technologies, SpamTitan provides an easy to install, easy to manage and highly secure email gateway. SpamTitan, a division of CopperFasten, is a global company with headquarters in Galway, Ireland. For further information visit

Contact Information

  • Media Contact:
    Valerie Harding
    Ripple Effect Communications
    Email: Email Contact
    Tel: 617.536.8887