Publication Date – November 15, 2022
Risk vectors with domain-based observations are used for Enhanced Ratings, including:
| Risk Vector | Description |
|---|---|
| SPF Domains | Assesses the effectiveness of Sender Policy Framework (SPF) records, which are DNS records that identify mail servers permitted to send email on behalf of a domain. |
| DKIM Records | Assesses the effectiveness of DomainKeys Identified Mail (DKIM) records, which is a countermeasure against adversaries that are attempting to send fake email by using a company’s email domain. |
| TLS/SSL Certificates | Evaluates the strength and effectiveness of the cryptographic keys within TLS and SSL certificates, which are used to encrypt internet traffic. |
| TLS/SSL Configurations | Determines if the used security protocol libraries support strong encryption standards when making connections to other machines. |
| Web Application Headers | Analyzes security-related fields in the header section of communications between users and an application. They contain information about the messages, determine how to receive messages, and how recipients should respond to a message. |