Researchers unmasking anonymous email senders
Subscribe now for $100 (23 issues) and save more than 37% off the cover price!
Get the latest news from Computerworld delivered via email.
Sign up now
Just because you send an email anonymously doesn’t mean people can’t figure out who you are anymore.
A new technique developed by researchers at Concordia University in Quebec could be used to unmask would-be anonymous emailers by sniffing out patterns in their writing style from use of all lowercase letters to common typos.
Their research, published in the journal Digital Investigation, describes techniques that could be used to serve up evidence in court, giving law enforcement more detailed information than a simple IP address can produce.
THE OTHER ANONYMOUS: 7 ways to avoid getting hacked by Anonymous
THE LAW: Congressman promises new online privacy legislation
"In the past few years, we've seen an alarming increase in the number of cybercrimes involving anonymous emails," says study co-author Benjamin Fung, a professor of Information Systems Engineering at Concordia University, in a statement. "These emails can transmit threats or child pornography, facilitate communications between criminals or carry viruses."
Of course some might be concerned that the technique could be used to reveal identities of whistleblowers or others who have legitimate reasons for sending emails via publicly available tools for sending anonymous messages.
The anonymous email-cracking technique devised by Fung and colleagues in cyber-forensics is to identify patterns in emails written by a subject, then filter out patterns found in emails of other suspects, narrowing it all down until only a unique “write-print” remains.
Concordia researchers tested their system by putting it to use on over 200,000 emails from 158 employees of Enron, and were able to identify authors 80% to 90% of the time.
Follow our Alpha Doggs blog for all the latest in network research.
Follow Bob Brown on Twitter here.
Read more about wide area network in Network World's Wide Area Network section.