AlienX said:
Actually, the technology is potentially cheaper than you might think. The problem is that there is no (or little) incentive for companies to implement it currently. Let me restate the technology I'm suggesting (I'm refining my idea as this discussion progresses).
There are two areas that need to be addressed in securing the Internet mail system:
- The user's mail reader.
- The mail server.
Securing #1 would mostly involve public key encryption and digital signatures. Many people already have this software and it will probably be embedded in all mail readers in the near future. The problem here is that "good" encryption is something the government doesn't like. The other problem is that standardizing the encryption software cuts off innovation in the market. These problems can be overcome if the market demands it.
Securing #2 also involves public key encryption and digital signatures. Using this, mail servers could be setup to accept only mail from other servers that properly "sign" their transmissions. By then setting up more mail servers around the world such that there are more layers in the transmission of email, it becomes more easily possible to trace the route of SPAM and cutoff servers that are regularly spamming (simply disallow mail that is signed by them). The tools are not that hard to implement, but what company would view this as a profittable business?
With the above, laws make more sense as they now have something more concrete to dig into rather than "ghosts" that can't be traced.