|Description||Authentication of Email:
ISPs should authenticate all outbound email using DomainKeys Identified Mail (DKIM) and Sender Policy Framework (SPF). Authentication should be checked on inbound emails; DKIM signatures should be validated and SPF policies verified.
|Industry Role(s)||Service Provider|
|Keyword(s)||Cyber Security;Intrusion Detection;|
|Reference/Comments||See the following document for more information: http://www.maawg.org/sites/maawg/files/news/MAAWG_Email_Authentication_Paper_2008-07.pdf
More information can also be found at:
Note that the Best Practices in this grouping are primarily aimed at ISPs that provide service to consumer end-users on residential broadband networks, but may be applicable to other users and networks as well.