To support email authenticity and enable analysis by a third-party platform, the protocols must verify the sender’s identity and provide metadata for inspection. According to the CompTIA SecurityX CAS-005 study guide (Domain 3: Cybersecurity Technology, 3.2):
DMARC (Domain-based Message Authentication, Reporting, and Conformance):DMARC builds on SPF and DKIM to enforce policies for email authenticity and provides reporting mechanisms to share authentication results with third parties for analysis.
DKIM (DomainKeys Identified Mail):DKIM adds a cryptographic signature to emails, allowing recipients to verify the sender’s domain and ensure the email’s integrity.
These two protocols are essential for authenticity and reporting.
Option C (TLS):TLS ensures encryption during transmission but does not address authenticity or reporting.
Option D (SPF):SPF verifies sender IP addresses but lacks reporting capabilities without DMARC.
Option E (DNSSEC):DNSSEC secures DNS queries but is not specific to email authenticity.
Option F (MX):MX records define mail servers, not authenticity or reporting.
[Reference:, CompTIA SecurityX CAS-005 Official Study Guide, Domain 3: Cybersecurity Technology, Section 3.2: "Configure email security protocols, including DMARC and DKIM.", CAS-005 Exam Objectives, 3.2: "Implement technologies for email security and authenticity.", , , ]
Submit