Table of Contents

You must be a registered user and logged-in to read this White Paper.

1. Executive Summary
   
   1. The corporate equivalent of identity theft
   2. A blended approach
2. Contents
3. Introduction
4. Practical Technical Controls
   
   1. Sender Policy Framework – SPF [RFC 7208]
      
      1. Domain SPF record
      2. HELO/EHLO name records
   2. Sender ID Framework – SIDF [RFC 4406 (4405, 4407 & 4408)]
   3. Domain Key Identified Mail – DKIM [RFC 6376]
   4. Author Domain Signing Practices – ADSP [RFC 5617]
   5. Domain-based Message Authentication, Reporting and Conformance – DMARC
   6. Domain Registration & Parking
5. Monitoring
   
   1. Customer Feedback
   2. Tracking Real-World Traffic
   3. Take-Down Services
   4. Tracking Malicious Domain Registration
6. Organisation & Policy Controls
   
   1. Do Not Send HTML Message or Embedded Links
   2. Control Where Email Quoting Your Domain Name is Sent From
7. The Future
   
   1. Protecting Against Fraudulent Email From Domains You Do not Control
8. Putting it all Together
   
   1. Introduce, Monitor and Adapt
9. About the Authors & this White Paper
   
   1. Edward Tucker
   2. Iain Hunneybell
   3. About the content of this White Paper

1. Figure 1 – Processing of SPF check of received Email
2. Figure 2 – The potential impact of SPF on auto-forwarded Email
3. Figure 3 – Example HELO name SPF record
4. Figure 4 – Domain SPF record layout
5. Figure 5 – Example domain SPF record
6. Figure 6 – Example HELO/EHLO name SPF record
7. Figure 7 – Example empty SIDF PRA policy record
8. Figure 8 – Example SIDF PRA policy record
9. Figure 9 – Example DKIM records
10. Figure 10 – Example DKIM signature included in a signed message header
11. Figure 11 – Example ADSP record
12. Figure 12 – Example DMARC aggregate report
13. Figure 13 – Example DMARC record
14. Figure 14 – Example DMARC reporting acceptance record
15. Figure 15 – Example ‘parked domain’ DNS records

Continue reading ‘Introduction’ »