Inside Risks: Risks in Email Security
It is easy to create bogus email with someone else’s email name and address: SMTP servers don’t check sender authenticity. Secure/Multipurpose Internet Mail Extensions (S/MIME) can help, as can digital signatures and globally-known trustworthy certification authorities (CAs) that issue certificates. The recipient’s email software verifies the sender’s certificate to determine his or her public key, […]