Problem Statement: Understand implementations of email protocols used to download or access
                   mailbox's on a server ...

                   keeping aside inconsistencies of having a mailbox on server ...refer to
                   ideal implementation of email as a viable utility.

Opportunity a):  enhance POP the ability to synchronize the mailbox ...given the capabilities offered by a server.

              scope for POP or IMAP4  or any other protocol to give the user the ability to
              download only those mails that have attachments enclosed with them!! ...

              or if offered by capabilities of a email-server ...a email client ...that provides
                 the interface to achieve the above


Opportunity b): secure data tranmission and transfers to mailbox and clients ...is provided by various protocols
                like secure-pop or ssl-enabled-imap4

               ability to encrypt , decrypt and also securely do data-transfers between mailbox's-mailclients

               using ssh-handshake or pgp handshake kind of process by implementing ...
               front-page extension authentication kind mechanisms over the mailbox or the virtual-luns on the server-side

Opportunity c) Further to as published and envisaged in the document projects.pdf ...viz. that of extensions to email based on DNS,

                a better and secure-means of communication can be implemented ...based on ssh/pgp handshakes

                ...viz. ability to integrate DNS around the PGP circulation of public-keys ...encryption and decryption process
   
                ...ideally ability to look-up a user or entity from mail-client on the lines of directory-lookup

                or ability to integrate Directory lookup with DNS ( or viceversa ...subject to use-case modelling 
                   or rationalization ...rational-roze modelling process methodology may be ??) ??

               as also reverse-lookup and forward lookup , validity  of email-ids queryable on ldap integrated with DNS domainname-schema,
               viz. ldap servers operating on the respective DNS-domain-name-schema when used in conjuction,this prevents vulnerabilities 
               from smtp ,while said authentication to servers may provide or add to authenticity of a email.              

Opportunity d) further to as published in document below ...when broadcasting or send mail to multiple users on the same domain

               ability to save on typing ...a better nomenclature to be implemented for resolving the addresses

               say xyz,xxx,abc@domain.com or some standard protocol or norm to be adopted


Opportunity e) Further to as described in c) above ...implementing a whois kind of lookup service for individual
                    integrable with a LDAP lookup ...fetch all the info of a entity ...accessible into 
                  client and ideally able to lookup with the email-id  ...keeping aside the standard procedure to
                 query such a db with various other searchable attributes ...relative ...easy of query-interface
                as also ....ability to sychronize ...the same into local address-book etc.

Opportunity f) understanding and interpreting from how telephone ...mobile ...fax  ...calls works

                     ...rationalizing the same with and how email as a communication means and its implementations

                    ...further to as illustrated and envisaged by this individual in the document projects.pdf  and elsewhere

                    ...scope ...context of smtp ...intermediary servers ...authenticity of  privacy of the communication sent
                    (while scope , context , validity of a electronic instrument like mobile/computer ...their vulnerability for
                      terms used phising ...snooping ...survielance ...viz. privacy or secracy guaranteed ??) ...given the 
                    context ...a configurable option on email-server-software ...for routing of email ...usage of intermediary ??
                    routing servers or using or broadcasting to the destination server (use-case modelling ...rationalization
                    ...scope and use mailbox's on a servers)
                      
                            

Note:   ...read ...through ..the document ...'opportunity_vulnerabilities_medium_www_internet.txt'
                                                           'opportunity_computing_electronic_devices_reliability.txt'

Opportunity g) scope and extensions to DMZ ...and security features implementable at protocol stack level.

              further to the procmail ...

                                      potential....extensions ....spam...management ...implementable at domain/user level

                                      depending on the preconfigured options ...based on the end-user ....

                                      a decision-tree ...implementable ...at protocol stack

                                      a)mail-undelivered ...

                                      b)mail-bounced

                                      c)rejected.....

                                                     viz. nature of the error forced or replied to a incomming data/stream [ instead of 
                                                      waiting till the stream to reach the mail host ...implementatable at the router ??]

Opportunity h) digital signature have been traditional been used for encryption,

                           a  digitally signed copy ...cross checked or verfied with private and public keys 

                           can be verified for validity and authenticity of a bounced email ...given the context of the eaves dropping
                           or phising or other similar IDS and malware to networking hacking. 


               potentially make use of the concept ...acknowledge-ment reciept concept present for a email broadcast, ability to encrypt
               with private-key use it kind of the icmp protocol ...for authentication or validity of the email-id (by returning the 
               same text transmitted ...potential validation being when a same manufacturer or oem client ...that appends timestamp/license-keys
               or similar validation structure mime wrapped over headers ...kind of using pgp model embedded in to email-client along with MIMe,
               usage of the digital signature for license-key verification) 
               ....may refer to the context of usage of the digital signature/certificate  as envisaged in projects.pdf or else-where in the document.
               and then transmit a email ...to the reciepient.

opportunity g) deriving from procmail/similar mail filter instance's on the mail host ...ability to implement server-side mailbox rules in conjuction
               with imap4 or similar protocol

                Eg usage: great utility to be retailable services for mobile clients.

Opportunity i) with reference to g) ...ability or scope to integrate a mail-filter/spam-filter ...given the context of architecture of mail-server
               with a MTA daemon on the server-side.


----------------------------------------------------------------------------------------------------------------------------------------------
      
 Indemnity:      The above problem statement having been encountered in various scenarios
                 and detailed in various 'Proof of concepts' as mentioned in 
                 
       http://uk.geocities.com/ravivenkatus/projects.pdf
       http://ravishankarkv.tripod.com/projects.pdf
        ....apply appropriate
                 'use-case' modeling, rationalize and arrive at a workable and feasible 
                  solution both commercially and techinically viable.

             

           


 
             