Browsers are
difficult
Please wait, loading your map...
How to Block e-mail
spoofing and
eavesdropping attacks.
Mindmap kindly
provided by DMARC-
EXPERT.com
E-mail authentication
and anti tampering
Envelop sender
authentication
SPF
E-mail content signing
DKIM
Header from sender
authentication
DMARC = sucess if
DKIM / SPF are success
with the domain in the
Header from field of an
e-mail
Logo authentication
BIMI
VMC
Encryption in transit to
avoid man in the middle
attacks/sniffing
mta-sts : to verify the
reciipient email server
is using a trusted
public certificate
Outbound security :
don't send cleartext e-
mail if destinary
domain doesn't want
Inbound security : Don't
send me an e-mail if a
fake email server
accept cleartext emails
on my behalf (whitout
trusted certificate)
Dane + dnssec : : to
verify the recipient
email server is using
the certificate its
domain says it is using
Digitally sign DNS
request with dnssec
I tell you in my dns
record what is the
sha256 print of the
certificate I'm using on
my mail server
TLS-RPT : receive e-
mails when someone
did not send e-mail to
us because the
recipient mail server
was not our mail
server(MITMA hacker
email server) or
because our server
certificate was not
working correctly
×
Created using
MindMup.com
