Considerations Regarding Third-Party Reputation Services

Document Type Replaced Internet-Draft (individual)
Author Murray Kucherawy 
Last updated 2013-11-27 (latest revision 2013-11-20)
Replaces draft-kucherawy-repute-considerations
Replaced by draft-kucherawy-repute-consid
Stream Internet Engineering Task Force (IETF)
Expired & archived
pdf htmlized bibtex
Stream WG state WG Document
Awaiting Expert Review/Resolution of Issues Raised
Document shepherd Dave Crocker
Shepherd write-up Show (last changed 2013-05-19)
IESG IESG state Replaced by draft-kucherawy-repute-consid
Consensus Boilerplate Unknown
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


Reputation services offer quality assessments about likely future behavior, based on past behaviors. The use of these services has become a common tool in many applications that seek to apply collected intelligence about traffic sources. Often this is done because it is common or even expected operator practice. It is therefore important to be aware of a number of considerations for both operators and consumers of the data. This document includes a collection of the best advice available regarding providers and consumers of reputation data, based on experience to date. Much of this is based on experience with email reputation systems, but the concepts are generally applicable.


Murray Kucherawy (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)