Large-Scale Active Measurements of DNS Entries Related to E-Mail System Security
Since its early beginnings, e-mail has been one of the most successful Internet services as it was the first to offer global, asynchronous and almost instant message delivery. However, at the same time e-mail has not been designed with strong security considerations in mind, leading to various problems related to unsolicited messages. In order to mitigate this situation, since the mid 2000s, domain-based message authentication mechanisms have been standardized and deployed which mostly rely on their specific entries in the DNS. In our present paper, we provide the results our measurements of such entries for the SPF, ADSP and DMARC technologies for the Top 1 Million Alexa sites over a period of four months in 2014. While we have found many expected types of entries, we were also surprised at the non- negligible number of either too lax or too strict policy configurations, which we comment upon in detail, along with analyzing interesting correlations in cross-technology configurations. After providing valuable insights into the current status and the trends in SPF, ADSP and DMARC, we conclude the present paper with an outlook on our future work.
Top- Gojmerac, Ivan
- Zwickl, Patrick
- Kovacs, Gabriel
- Steindl, Christoph
Category |
Paper in Conference Proceedings or in Workshop Proceedings (Full Paper in Proceedings) |
Event Title |
IEEE Conference on Communications 2015 (ICC'15) |
Divisions |
Cooperative Systems |
Subjects |
Informatik Allgemeines Computersicherheit |
Event Location |
London, UK |
Event Type |
Conference |
Event Dates |
8.6.2015 – 12.06.2015 |
Date |
June 2015 |
Export |