When Authentic Isn’t Real
Our Truemark service relies on email authentication (SPF/Sender ID or DomainKeys/DKIM) as a foundation for verifying legitimate messages. And there are some email services out there that indicate with an icon whether a message has passed authentication. But is email authentication by itself enough? Nope (you knew that was coming). Email authentication only tells me that the message really came from the entity who claimed to send it. That works great when someone pretending to be a bank uses the bank’s email address – the authentication will fail and the message can be dropped so consumers never see it. But what if [...]