{"id":2460,"date":"2015-01-20T19:05:00","date_gmt":"2015-01-20T19:05:00","guid":{"rendered":"https:\/\/thebeagle.itgroove.net\/?p=1990"},"modified":"2023-02-24T21:39:48","modified_gmt":"2023-02-24T21:39:48","slug":"office-365enhanced-email-protection","status":"publish","type":"post","link":"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/","title":{"rendered":"Office 365\u2013Enhanced Email Protection"},"content":{"rendered":"

Microsoft is rolling out improved email protection for the Exchange Online component of Office 365.\u00a0 Specifically, they are expanding the use of DKIM<\/strong> and DMARC<\/strong> technologies inside Exchange Online and Exchange Online Protection (EOP).<\/p>\n

The idea behind all of this is to expand the ability to authenticate email as coming from \u201ctrusted authenticated senders\u201d so as to cut down and even eliminate the amount of \u201ccrud\u201d\u00a0 (spam, phishing, etc.) emails that hits a user\u2019s Inbox.\u00a0 Exchange Online has always supported the SPF framework and other basic techniques for validating email sender authenticity but newer technologies and techniques are required to combat modern threats.\u00a0 DKIM and DMARC are those technologies.<\/p>\n

DMARC (Domain-based Messaging and Reporting Compliance)<\/strong> is specifically designed to combat spoofing and phishing.\u00a0 It specifically looks at the \u201c5322.From\u201d email address (the address displayed in email clients like Outlook) which the address which is often spoofed.\u00a0 This is different from what the SPF looks at which is the \u201c5321.MailFrom\u201d address.\u00a0 Here is an example (and my thanks to the OfficeBlogs folks for this info):<\/p>\n

\"image\"<\/a><\/p>\n

As you can see the info in the two \u201cFrom\u201d addresses does not match and DMARC catches this because DMARC evaluates both the SPF record AND the DKIM record for both domains.\u00a0 In the above example phishing.com passes because there is a registered SPF record for it (smart bad guys) BUT phishing.com does not match woodgrovebank.com in the second From: address and it fails DMARC.\u00a0 DMARC actually stamps this info into the header of the email:<\/p>\n

\"image\"<\/a><\/p>\n

Office 365 uses this DMARC tag to mark the message as SPAM.<\/p>\n

DKIM (DomainKeys Identified Mail)<\/strong> is a technology used by the sender<\/em> of the email to claim some responsibility for the message by associating the domain with the<\/em> message.\u00a0 In other words, DKIM allows senders to build domain reputation<\/em> by tagging their email with DKIM.\u00a0 DKIM, in turn, verifies the authenticity of the email and writes the results of the verification in an Authentication-Results header in the email.\u00a0 For example if the \u201csigning domain\u201d (users email domain) is \u201cexample.com\u201d then this would be a verified authentication header:<\/p>\n

\"image\"<\/a><\/p>\n

If the message actually failed DKIM authentication the authentication header would have a dkim-fail tag and further DKIM processing of the email would fail.<\/p>\n

Office 365 is rolling out these technologies across all of Office 365 (DKIM has to this point been supported on on IPv6 connections, it is now rolling out across IPv4 as well) and should be completely implemented by the end of the first quarter of 2015.\u00a0 It should greatly reduce (the already low) amount of phishing and SPAM email that does make it through the Exchange Online Protection filters.\u00a0 And, of course, Microsoft continues to add to the capabilities of Exchange Online Protection.\u00a0 In my view, this is just one more reason why Office 365 offers so much value as you would have to spend a great deal of money to provide similar levels of protection to your own, on-premise Exchange installation.<\/p>\n

For those of you so inclined, further reading on DKIM is available here<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"

Microsoft is rolling out improved email protection for the Exchange Online component of Office 365.\u00a0 Specifically, they are expanding the use of DKIM and DMARC technologies inside Exchange Online and Exchange Online Protection (EOP). The idea behind all of this is to expand the ability to authenticate email as coming from \u201ctrusted authenticated senders\u201d so … <\/a><\/p>\n","protected":false},"author":10,"featured_media":2092,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"inline_featured_image":false,"footnotes":""},"categories":[247],"tags":[363,364,500,576],"acf":[],"yoast_head":"\nOffice 365\u2013Enhanced Email Protection - Archive<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Office 365\u2013Enhanced Email Protection - Archive\" \/>\n<meta property=\"og:description\" content=\"Microsoft is rolling out improved email protection for the Exchange Online component of Office 365.\u00a0 Specifically, they are expanding the use of DKIM and DMARC technologies inside Exchange Online and Exchange Online Protection (EOP). The idea behind all of this is to expand the ability to authenticate email as coming from \u201ctrusted authenticated senders\u201d so …\" \/>\n<meta property=\"og:url\" content=\"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/\" \/>\n<meta property=\"og:site_name\" content=\"Archive\" \/>\n<meta property=\"article:published_time\" content=\"2015-01-20T19:05:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-02-24T21:39:48+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/regroove.ca\/archive\/wp-content\/uploads\/sites\/6\/2014\/10\/o365.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"119\" \/>\n\t<meta property=\"og:image:height\" content=\"119\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Sean Wallbridge\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Sean Wallbridge\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/\",\"url\":\"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/\",\"name\":\"Office 365\u2013Enhanced Email Protection - Archive\",\"isPartOf\":{\"@id\":\"https:\/\/regroove.ca\/archive\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/regroove.ca\/archive\/wp-content\/uploads\/sites\/6\/2014\/10\/o365.jpg\",\"datePublished\":\"2015-01-20T19:05:00+00:00\",\"dateModified\":\"2023-02-24T21:39:48+00:00\",\"author\":{\"@id\":\"https:\/\/regroove.ca\/archive\/#\/schema\/person\/74e1c0def190f181c1394c2b6d883e77\"},\"breadcrumb\":{\"@id\":\"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/#primaryimage\",\"url\":\"https:\/\/regroove.ca\/archive\/wp-content\/uploads\/sites\/6\/2014\/10\/o365.jpg\",\"contentUrl\":\"https:\/\/regroove.ca\/archive\/wp-content\/uploads\/sites\/6\/2014\/10\/o365.jpg\",\"width\":119,\"height\":119},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Blog Archive\",\"item\":\"https:\/\/regroove.ca\/archive\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Office 365\u2013Enhanced Email Protection\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/regroove.ca\/archive\/#website\",\"url\":\"https:\/\/regroove.ca\/archive\/\",\"name\":\"Archive\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/regroove.ca\/archive\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/regroove.ca\/archive\/#\/schema\/person\/74e1c0def190f181c1394c2b6d883e77\",\"name\":\"Sean Wallbridge\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/regroove.ca\/archive\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/adf8cea6291c39d166616f2148d919a6?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/adf8cea6291c39d166616f2148d919a6?s=96&d=mm&r=g\",\"caption\":\"Sean Wallbridge\"},\"url\":\"https:\/\/regroove.ca\/archive\/author\/swallbridge\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Office 365\u2013Enhanced Email Protection - Archive","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/","og_locale":"en_US","og_type":"article","og_title":"Office 365\u2013Enhanced Email Protection - Archive","og_description":"Microsoft is rolling out improved email protection for the Exchange Online component of Office 365.\u00a0 Specifically, they are expanding the use of DKIM and DMARC technologies inside Exchange Online and Exchange Online Protection (EOP). The idea behind all of this is to expand the ability to authenticate email as coming from \u201ctrusted authenticated senders\u201d so …","og_url":"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/","og_site_name":"Archive","article_published_time":"2015-01-20T19:05:00+00:00","article_modified_time":"2023-02-24T21:39:48+00:00","og_image":[{"width":119,"height":119,"url":"https:\/\/regroove.ca\/archive\/wp-content\/uploads\/sites\/6\/2014\/10\/o365.jpg","type":"image\/jpeg"}],"author":"Sean Wallbridge","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Sean Wallbridge","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/","url":"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/","name":"Office 365\u2013Enhanced Email Protection - Archive","isPartOf":{"@id":"https:\/\/regroove.ca\/archive\/#website"},"primaryImageOfPage":{"@id":"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/#primaryimage"},"image":{"@id":"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/#primaryimage"},"thumbnailUrl":"https:\/\/regroove.ca\/archive\/wp-content\/uploads\/sites\/6\/2014\/10\/o365.jpg","datePublished":"2015-01-20T19:05:00+00:00","dateModified":"2023-02-24T21:39:48+00:00","author":{"@id":"https:\/\/regroove.ca\/archive\/#\/schema\/person\/74e1c0def190f181c1394c2b6d883e77"},"breadcrumb":{"@id":"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/#primaryimage","url":"https:\/\/regroove.ca\/archive\/wp-content\/uploads\/sites\/6\/2014\/10\/o365.jpg","contentUrl":"https:\/\/regroove.ca\/archive\/wp-content\/uploads\/sites\/6\/2014\/10\/o365.jpg","width":119,"height":119},{"@type":"BreadcrumbList","@id":"https:\/\/regroove.ca\/archive\/2015\/01\/20\/office-365enhanced-email-protection\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Blog Archive","item":"https:\/\/regroove.ca\/archive\/"},{"@type":"ListItem","position":2,"name":"Office 365\u2013Enhanced Email Protection"}]},{"@type":"WebSite","@id":"https:\/\/regroove.ca\/archive\/#website","url":"https:\/\/regroove.ca\/archive\/","name":"Archive","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/regroove.ca\/archive\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/regroove.ca\/archive\/#\/schema\/person\/74e1c0def190f181c1394c2b6d883e77","name":"Sean Wallbridge","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/regroove.ca\/archive\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/adf8cea6291c39d166616f2148d919a6?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/adf8cea6291c39d166616f2148d919a6?s=96&d=mm&r=g","caption":"Sean Wallbridge"},"url":"https:\/\/regroove.ca\/archive\/author\/swallbridge\/"}]}},"_links":{"self":[{"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/posts\/2460"}],"collection":[{"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/users\/10"}],"replies":[{"embeddable":true,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/comments?post=2460"}],"version-history":[{"count":1,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/posts\/2460\/revisions"}],"predecessor-version":[{"id":2835,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/posts\/2460\/revisions\/2835"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/media\/2092"}],"wp:attachment":[{"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/media?parent=2460"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/categories?post=2460"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/regroove.ca\/archive\/wp-json\/wp\/v2\/tags?post=2460"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}