Skip to content

Planning Docs

Jump to bottom
tparrott-cse edited this page Jan 13, 2020 · 1 revision

Web Interface

Domain Management

  • User controlled
  • User management

Orchestration

  • Periodic scans of DMARC/SPF/DKIM domains daily

  • Upon client request, scan of domains on adhoc basis, but only as frequently as every 15-min. If result requested again, offer cached result from DB?

  • When initial domain is accepted after verification, offer services/containers to be used for domain but enable none by default

    • DMARC (Enables DMARC/DKIM/SPF)
    • HTTPS?
    • Advanced (customize specific services)

Cloud Native

Scalable

Interpret results --Provide guidance

High-level stats for compliance/security

Data store for historical analysis

Auditing

Use cases

  • baseline security
  • notice configuration changes
  • implement email domain protection**
  • accept inbound emails to perform adhoc scan of mail infra

Domain validation prior to scans

  • TXT record lookup to subdomain of root domain

    • (Not added to root domain to minimize bloat in existing records)

  • 8 character alphanumeric random string to establish organizational domain?

    • ########.domain.test covers all subdomains of domain.test
    • ########.customerA.domain.test would only cover *.customerA.domain.test but not *.customerB.domain.test

  • 'Verified' column in database would include random subdomain for org

This project was built by the Treasury Board of Canada Secretariat in collaboration with the Canadian Centre for Cyber Security.

Contribute to this documentation.

Clone this wiki locally