Email Authentication

email_auth

The Email Authentication object describes the Sender Policy Framework (SPF), DomainKeys Identified Mail (DKIM) and Domain-based Message Authentication, Reporting and Conformance (DMARC) attributes of an email.

Attributes

Caption	Name	Type	Description
DKIM Status	`dkim`	String	The DomainKeys Identified Mail (DKIM) status of the email.
DKIM Domain	`dkim_domain`	String	The DomainKeys Identified Mail (DKIM) signing domain of the email.
DKIM Signature	`dkim_signature`	String	The DomainKeys Identified Mail (DKIM) signature used by the sending/receiving system.
DMARC Status	`dmarc`	String	The Domain-based Message Authentication, Reporting and Conformance (DMARC) status of the email.
DMARC Override	`dmarc_override`	String	The Domain-based Message Authentication, Reporting and Conformance (DMARC) override action.
DMARC Policy	`dmarc_policy`	String	The Domain-based Message Authentication, Reporting and Conformance (DMARC) policy status.
Raw Data	`raw_data`	JSON	Group:`context` The event data as received from the event source.
Record ID	`record_id`	String	Group:`primary` Unique identifier for the object
SPF Status	`spf`	String	The Sender Policy Framework (SPF) status of the email.
Unmapped	`unmapped`	Unmapped[]	Data from the source that was not mapped into the schema.

Relationships

Inbound Relationships

These objects and events reference Email Authentication in their attributes:

Outbound Relationships

Email Authentication references the following objects and events in its attributes:

Unmapped

This page describes ocsf-1.4.0

Updated 10 days ago