Information on the internet can be handled carelessly and dangerously. Most of your online footprints stem from the emails which you send and receive.
So, it seems evident to us that our emails should have some security measures set up, but most of them don’t.
Table of Contents
- Digital Certificates
- SPF (Sending Policy Framework)
- DKIM (Domain Keys Identified Mail)
- PGP (Pretty Good Privacy)
SSL and TLS are application layer protocol or set of rules that is most commonly used by emails. Transport Layer Security (TLS), is the successor of SSL and it provides base-level encryption.
Most often, an email client, such as Gmail, while sending and receiving ails connects to an email server through TCP. The TLC adds privacy and security while it’s establishing a connection between the client and the server.
Digital Certificates are used to encrypt your email details using cryptography. They belong to a class called ‘Public Key Encryption.’
Your Digital Certificate serves as a public key in which they can lock emails they are sending you. You can also decrypt the emails using a private key that will be made available to you. This is how Bitcoin work.
SPF (Sending Policy Framework)
This is a protocol that is used to authenticates domains, and the prevent them from being spoofed. A domain can be used to hide the intents of hackers and cyber criminals. SPF also helps a server to identify if the message was sent via a legitimate domain or not.
DKIM (Domain Keys Identified Mail)
DKIM is an extended version of SPF. DKIM looks after the safety of your email while it’s on the move. It works in different ways, too. First, it uses a digital signature to check if a domain sent the mail. Then it traces it back to the domain to see if it is sending the mail. It is a double-layered protocol.
DMARC is an acronym for Domain-Based Message Authentication, Reporting, and Conformance. It’s an authentication protocol that checks the validity of SPF and DKIM and also instructs the provider on handling incoming messages. Although, DMARC has not seen good rates of adoption. And it is not foolproof either.
These are end-to-end encryption protocols. S/MIME is specifically designed to encrypt email contents but leaves the details, such as sender, recipient, open.
It has been in existence for a long time, and the chances are that your email clients used them too. They demand a digital signature such that only the receiver is capable of decrypting your email.
PGP (Pretty Good Privacy)
PGP and OpenPGP are two-way encryption protocols, with the second being open-source. Open Pretty Good Privacy (PGP) works just like S/MIME, meaning only the contents are encrypted and a third party can gather recipient and sender details, which also constitute the metadata.
OpenPGP gets timely updates, and it’s free to use. GPGSuite for Mac and Gpg4Win for Windows should be a place to start.