Security Operations: Examine Email Security Flashcards
What are the types of email security available today?
S/MIME
Digital Signature
DLP
Email Gateway
DMARC
- DKIM
Sender Policy Framework
What is S/MIME?
S/MIME: A method for securing email messages with encryption and digital signatures, thereby helping to ensure the confidentiality, integrity, and authenticity of email communication.
Popular in the Microsoft world
What is digital signature?
Digital signature: A cryptographic method used to verify authenticity and integrity of digital files and messages to ensure they haven’t been tampered with and were created by a legitimate sender.
What are the benefits of DLP?
DLP: A comprehensive strategy and tools that help organizations identify, monitor, and protect data from unauthorized access, sharing, or leakage, ensuring data security and compliance with regulatory requirements.
What does email gateway do in terms of security?
Email gateway: A dedicated server or software component that acts as an intermediary between an organization’s internal email infrastructure and the external internet. It provides a protective barrier by filtering, scanning, and monitoring incoming and outgoing email traffic.
What does DMARC use for additional authentication?
Domain-based Message Authentication Reporting and Conformance (DMARC): An email authentication, policy and reporting protocol that helps organizations prevent email spoofing and phishing attacks by verifying sender identities and specifying how to handle unauthenticated messages. It uses:
DomainKeys Identified Mail (DKIM): An email authentication method that adds a digital signature to outgoing emails. This allows email recipients to verify the authenticity and integrity of the sender’s domain and the message content.
Encrypt to server then server sends a digital signature – recipient can only reverse it using a private key
