Completed
Domain Message Authentication, Reporting and Conformance (MARC)
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
You Have No Idea Who Sent That Email - 18 Attacks on Email Sender Authentication
Automatically move to the next video in the Classroom when playback concludes
- 1 Intro
- 2 How Do You Verify the Email Sender?
- 3 Background: Email Transmission
- 4 Sender Policy Framework (SPF)
- 5 Domain Message Authentication, Reporting and Conformance (MARC)
- 6 Overview of Email Authentication Flow
- 7 Key Idea of Our Attacks
- 8 Inconsistencies b/w SPF and DMARC
- 9 Inconsistencies b/w DKIM and DNS
- 10 Exp. 3a: DKIM Authentication Results Injection
- 11 a: Multiple From Headers
- 12 From Sender Ambiguity
- 13 Complex From Header Syntax
- 14 h: Exploiting Parsing Inconsistencies
- 15 Spoofing via an Email Service Account
- 16 Thinking on Defense