Archive for the 'Trust' Category

A more secure Boxbe with OAUTH Support for Gmail

Monday, February 13th, 2012

Boxbe is keeping up with the latest in security practices and is excited to announce our support of OAUTH with Gmail and Google Apps. This means that when using Boxbe to help prioritize your email, you can exchange email account authentication information with Boxbe (such as your email contact list) without sharing any access permissions (your password).

What has changed with Boxbe, you ask?

First-time users, and users setting up more than one Gmail and/or Google Apps email address in their Boxbe account, previously needed to input their username and password in the Boxbe system. Now, when going through either of the same processes, you will automatically be directed to Gmail to enter your information, and then sent back to Boxbe after accepting to grant OAUTH access to Boxbe.

What are the Benefits?

Your email’s personal access information is not given out.  At all.  Boxbe can only access your data when you have given your consent.

More details: Click on this link for more information on OAUTH from Google.

Boxbe continuously aims to support the best practices, especially when it comes to the security of our members.  We take the privacy of our members seriously, while recognizing that doing so is critical to the success of using the Boxbe service.  As with OAUTH, Boxbe continues to make significant efforts to protect the identity and personal information of our members.  Securely maintaining Access Permissions using industry standard security practices, and seeking the best ways to improve integration with ISP’s (internet service providers) for the sake of security, is our goal.

Note for Gmail OAUTH users: You can always edit any third party applications you have allowed to access your Google account, by visiting your Google account Dashboard.  Under “Account” click on “Websites authorized to access account” and you will be taken to a page with a list of connected sites, apps, and services.

For more information on Boxbe, Click here to see how Boxbe works!

And coming in the not-so-distant future: Boxbe OAUTH support for AOL and
Yahoo! Stay tuned…

Paying to circumvent spam filters

Friday, July 13th, 2007

16797769_791b6594a6_m.jpgShould your ISP be able to determine what email lands in your inbox? We don’t think so and neither does Slashdot.

Two recent posts by Bennett Haselton on Slashdot illustrate the problems with the approach that Goodmail and Hotmail have for certifying senders. Bennett’s take is that if you are the little email list owner, small time email marketer or have the wrong political views, you could be shut out of this brave new world of pay-per-email. Most of the little guys can’t or won’t pay fees to be “certified” by either company.

Who do you trust?

As someone who uses email to manage both my personal and business life, the question I have to ask myself is, “Can I trust my ISP to make decisions for me about who can reach me?” Honestly, I don’t know the answer to that question. I do believe that they want to decrease the amount of spam their users receive, but I think this is the wrong way to do it.

Boxbe differs from both Hotmail and Goodmail in two fundamental ways. With Hotmail and Goodmail, the money collected goes to your ISP and they alone determine who can circumvent their spam filter. With Boxbe, the bulk of the money goes to the person who receives the email, and it’s the same person that ultimately controls who reaches their inbox.

Conflict of interest

From a business perspective, Goodmail must seem like a great idea. If someone came along and said, “Hey, we can curb your spam problem and you can make money while you’re doing it,” I could see how it might be hard to say no. But at some point that misalignment of interests is going to play itself out.

The EFF put it best with its position on Goodmail and the whole notion of pay-per-email:

Goodmail reduces the incentive for ISPs to improve spam filters, much less to give end users more control of the filters. It increases the incentives for ISPs to overblock, since they make money when more senders sign up for Goodmail.

Bottom line: they decide who can send you email while at the same time they solicit “protection money” from senders willing to pay.

How Boxbe fits in

So, we’ve got a different philosophy about how this should work. If you’re a Boxbe member, you know we don’t think that payment to bypass a spam filter is a bad thing. It’s our raison d’être.

We believe people should have choices in who they receive email from. More importantly, we believe if money is going to change hands to reach you, you should get most of it. It’s your inbox, you decide who you can trust.

image from Flickr user srish