The Chief information Officer of a large cloud software vendor reports that many employees are falling victim to phishing emails because they appear to come from other employees.

The Chief information Officer of a large cloud software vendor reports that many employees are falling victim to phishing emails because they appear to come from other employees.

Which of the following would BEST prevent this issue
A . Induce digital signatures on messages originating within the company.
B . Require users authenticate to the SMTP server
C . Implement DKIM to perform authentication that will prevent this Issue.
D . Set up an email analysis solution that looks for known malicious Iinks within the email.

View Answer

Answer: C

Explanation:

DKIM, or DomainKeys Identified Mail, is an email authentication method that uses a digital signature to let the receiver of an email know that the message was sent and authorized by the owner of a domain1 DKIM helps prevent phishing emails that spoof or impersonate other domains by verifying the identity and integrity of the sender. DKIM works by adding a DKIM signature header to each outgoing email message, which contains a hash value of selected parts of the message and the domain name of the sender. The sender’s domain also publishes a public key in its DNS records, which can be used by the receiver to decrypt the DKIM signature and compare it with its own hash value of the message. If they match, it means that the message was not altered in transit and that it came from the claimed domain.

Reference: 1 What Is DKIM? – How It Works, Definition & More | Proofpoint US