Nicola Seidita
Email Spoofing and Domain Impersonation: A Technical and Experimental Study of DMARC Enforcement and Risk Assessment Frameworks.
Rel. Andrea Atzeni, Paolo Dal Checco. Politecnico di Torino, Corso di laurea magistrale in Cybersecurity, 2026
|
Preview |
PDF (Tesi_di_laurea)
- Tesi
Licenza: Creative Commons Attribution Non-commercial No Derivatives. Download (4MB) | Preview |
![[thumbnail of Documenti_allegati]](https://webthesis.biblio.polito.it/style/images/fileicons/application_zip.png "Documenti_allegati")
|
Archive (ZIP) (Documenti_allegati)
- Altro
Licenza: Creative Commons Attribution Non-commercial No Derivatives. Download (26MB) |
Abstract
Email spoofing and domain impersonation represent persistent threats to digital communications, enabling Business Email Compromise (BEC), financial fraud, and reputational damage. Despite the availability of authentication standards such as SPF, DKIM, and DMARC, adoption remains incomplete and enforcement policies are frequently misconfigured, reducing their preventive effectiveness. This thesis investigates email authentication from a multidisciplinary perspective, integrating technical analysis, forensic methodologies, and legal accountability frameworks. First, the work examines the operational interplay between SPF, DKIM, and DMARC, highlighting common configuration weaknesses and their security implications. A technical and comparative evaluation of existing DMARC compliance and forensic tools is conducted, with particular focus on configuration-based exposure analysis and evidentiary preservation.
Building upon these foundations, the thesis introduces two original contributions
Relatori
Anno Accademico
Tipo di pubblicazione
Numero di pagine
Corso di laurea
Classe di laurea
URI
 |
Modifica (riservato agli operatori) |
