Messaging Security
16 August 2019
In the past, we have covered various methods of security. This week’s blog will discuss on the topic of messaging security. This basically refers to the practice of protecting the integrity of a message so that it can be read only by the intended recipient. This is most commonly done by methods of encryption. However, there are other components to message security that is overlooked.
Spam
When discussing about messaging security, a common term that comes up is “spam”. Spam is essentially junk email that is sent in bulk, typically for commercial purposes. They can also be malicious as much of it is sent by botnets and virus infected machines. It is estimated that about 80% of all emails sent in the world are spam. Other types of spam may take the form of: instant messaging, ads, fax, and social media spam.
Methods of Detection
Now that we have covered the basics of spam, how can it be detected? The two common methods are: Rule-based and Bayesian.
- Rule-based: This is the classic approach in detection used in many security practices. As the name mentions, rules are placed in the forms of fixed strings and are then used to match the strings used in email spam. It can also help identify if an email contains any known-harmful attachments or URL’s. A tool that can be used to match strings/regular expressions is: Regex Coach.
- Bayesian: The Bayesian approach depends more on the use of statistical tactics to identify spam; rather than with implemented rules. This method is much more efficient especially on a larger scale where placing rules may not cover as much ground.
As always, another method of detection is manually by the user. This involves being aware of what spam is and the forms it can take. The common attributes of spam mail one must know are:
- There is no recipient
- Subject refers to a sender
- Misspelled words and/or incorrect grammar
- Malicious looking links/URL’s
- Sender is unknown
Blocking Spam
Now that the spam has been identified, how can it be blocked and ultimately avoided? Great news is that most spam is already filtered out and blocked by email software – so the user doesn’t need to do much. Essentially all email providers have a folder called “Spam” for this very purpose. With the help of IP’s, most spam is already identified on the network level before it even reaches one’s inbox. This is possible due to Real-time blackhole lists, or RBL’s. These lists dynamically hold IP addresses of spam sources.
In conclusion, spam is an important area of focus when it comes down to messaging security. Spam can contain malicious content that can be detrimental to a user if accessed. By using secure products and being aware of Spam in general - it can significantly reduce the chances of being harmed.