Evidence-based sources for perfect Email Security
»For IT Admins and Support Engineers
Table of Contents
Sharing is Caring
Email security is crucial for managing a single email account or an entire organisation's domain. However, finding credible information to help you maintain email security can be challenging and time-consuming. It's essential to use trustworthy sources for the effective implementation of email security and authentication protocols. As I have used several sources to configure email authentication, I am sharing them here to help you find specific information quickly. This guide can assist with setting up a new email address on a webmail service and understanding email authentication.
M3AAWG
M3AAWG: The M3AAG↗︎ (Messaging, Malware, and Mobile Anti-Abuse Working Group) offers a range of messaging security resources, including recommended best practices for configuring Email security, best practices for Email authentication and managing SPF records.
| Description | Link |
|---|---|
| The M3AAWG↗︎ offers a lot of very good information about messaging security guides and best practices, including: |
Miscellaneous
| Provider | Description | Link |
|---|---|---|
| Validity & Cloudflare | The Return Path Blog by Validity provides updates and insights on email security. The Cloudflare Learning Center offers in-depth articles on internet security, including DMARC, DKIM, and SPF. | Return Path Blog↗︎ |
| IETF | For technical development and information on protocols such as SPF, DKIM, and DMARC, review the RFCs authored by the Internet Engineering Task Force (IETF). | |
| Global Cyber Alliance | The Global Cyber Alliance (GCA) offers resources and toolkits for improving digital security, particularly in email authentication through DMARC. | DMARC Toolkit↗︎ |
| Cloudflare | For in-depth articles on internet security, including DMARC, DKIM and SPF applicable to Cloudflare Products and Services, visit the Cloudflare Learning Center. | Cloudflare Learning Center↗︎ |
| IEEE | IEEE Xplore provides a digital library with peer-reviewed articles on email authentication and various technical and scientific topics. | IEEE Xplore↗︎ |
| LuxSci | LuxSci's Blog offers deep and informative email security and encryption content. | LuxSci's Secure Email Blog↗︎ |
| Agari | Agari specialises in phishing defence tools and provides content and tools for email authentication, with a particular focus on DMARC. | Agari's DMARC Resource Page↗︎ |
| BIMI Group & AuthIndicators | BIMI (Brand Indicators for Message Identification) is an evolving standard that uses DMARC to display brand-specific logos in emails, enhancing trust and authenticity. The AuthIndicators Working Group provides comprehensive details on BIMI and its current adoption. |
BIMI Official Website↗︎ AuthIndicators Resource↗︎ |
| SendGrid | Access comprehensive guides on email authentication. | SendGrid Docs |
| Postmark | Their DMARC guide is concise, beginner-friendly, and practical. | Postmark's DMARC Guide |
| The Cyber Mentor | While not exclusively focused on email authentication, The Cyber Mentor YouTube Channel covers various cybersecurity topics. | The Cyber Mentor YouTube Channel |
Workplace Consultants
Workplace Consultants, a trusted source ;), offers extensive blog articles on essential email authentication mechanisms such as SPF, DKIM (DomainKeys Identified Mail), and DMARC. These articles provide in-depth insights into the implementation and benefits of these protocols.
| Description | Link |
|---|---|
|
Extensive blog articles about SPF, DKIM and DMARC. |
SaaS Platforms
When it comes to implementing email authentication mechanisms on specific platforms, SaaS (Software as a Service) platforms like Microsoft Docs, Google Workspace Admin Help, SendGrid Docs, and Postmark provide comprehensive documentation and guides for implementing DMARC, DKIM, and SPF.
| Platform | Description | Link |
|---|---|---|
| Microsoft Docs | Microsoft Docs is a valuable resource for comprehensive documentation on implementing DMARC, DKIM, and SPF for Microsoft 365, ensuring your email client is well-configured for security. | Microsoft Docs↗︎ |
| Google Workspace | Find helpful information on implementing authentication mechanisms on the Google Workspace platform. | Google Workspace Admin Help↗︎ |
DNS Management
To effectively manage DNS (Domain Name System) records for email authentication, various DNS management platforms like Network Solutions, Register.com, ZoneEdit, Cloudflare, and Bluehost offer support and resources.
DKIM and SPF Deployments
- How to set up DKIM for Shopify↗︎
- DKIM Specifications↗︎
- How to Add a DKIM Record in Namecheap↗︎
- How to Add an SPF Record in Namecheap↗︎
- How to Add an SPF Record in DreamHost↗︎
- AWS SES DKIM Authentication↗︎
- Google DKIM Authentication↗︎
- Microsoft 365 DKIM Authentication↗︎
- Zoho Mail DKIM Configuration↗︎
- Mailchimp Authentication and Delivery↗︎
Other Services and Resources
Final Note
Lastly, it is important to note that securing Email goes beyond implementing email authentication protocols. It also involves having a robust password, enabling two-factor authentication (2FA), and being cautious with the emails and attachments you interact with. By following these best practices and leveraging the recommended resources, you are taking the first steps in securing your Email infrastructure.