According to the data collected from 2013, impostor email attack/threads/scam has siphoned more than $2.3 billion from more than 17,000 victims. Impostor email attacks succeed as they look and feel legitimate, they do not include malicious link or malware attachments, and they do not arrive in high enough volumes to raise red flags in most anti-spam tools. Hence, impostor emails can evade solutions that look for only malicious content or behaviour. Detection of these emails is a major challenge for email security providers as well as difficult to recognise these emails by the end user (when sent from look-alike domains, having valid Sender Policy Framework (SPF), DomainKeys Identified Mail (DKIM), Domain-based Message Authentication, Reporting & Conformance (DMARC) records). There are techniques which uses methods such as dynamically analysing the attributes of all emails as it arrives and detect anomalies that point to an impostor, but they are not fool proof. The technique presented herein propose method to use remote attestation for providing trustworthiness to the emails exchanged between sender and recipient, hence preventing impostor attacks/frauds.

Creative Commons License

Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 License.