Researcher in Computer Science/ Improving email security protocols – LIG

Job title:

Researcher in Computer Science/ Improving email security protocols – LIG

Company:

Job description

Offer DescriptionImproving Email Security Protocols General Context and Motivations Emails: A Ubiquitous and Vulnerable Technology Since their emergence in the 1980s (with the introduction of the SMTP protocol in RFC 821), emails have become an essential means of communication, both in personal and
professional interactions. This technology has undergone several updates, including RFC 2821 in 2001 and RFC 5321 in 2008, to adapt to growing needs and technological advancements.The impact of email vulnerabilities is significant. According to a 2019 FBI report, Business Email Compromise (BEC) scams caused over $26 billion in
losses between October 2013 and July 2019. BEC attacks target businesses or individuals to gain their trust and divert funds, often by impersonating identities via email. Cybercriminals exploit the trust inherent in electronic communications to access sensitive information or execute illegal transfers.To counter these risks, multiple approaches are required: user education and awareness, enhanced security practices, and the deployment of technical solutions to prevent the delivery of fraudulent emails. However, the SMTP protocol, used for email transmission and reception, lacks intrinsic mechanisms for identity verification, making impersonation one of the primary security issues on the Internet.Security Protocols in the Email Ecosystem To address the shortcomings of SMTP, several security mechanisms have been introduced over the past two decades. Protocols like Sender Policy Framework (SPF), DomainKeys Identified Mail (DKIM), and Domain-based Message Authentication, Reporting, and Conformance (DMARC) provide complementary solutions for securing email communications:

• SPF allows domain owners to specify which host addresses are authorized to send emails on behalf of their domain.

• DKIM adds a cryptographic signature in email headers to ensure their integrity.

• DMARC combines the mechanisms of SPF and DKIM to provide feedback systems and establish advanced email authentication policies.

Objectives of the Postdoctoral Project The primary goal of this project is to develop a new method for assessing the adoption of email security protocols, with a focus on SPF. Unlike existing approaches that rely on second-level domain lists, this method would be based on analyzing the content of email headers. This approach aims to provide a more accurate and faithful representation of the current state of electronic communication security.Contact for any information related to the position:Where to apply E-mail[email protected]RequirementsResearch Field Computer science Education Level PhD or equivalentSkills/QualificationsMain skills:

• Research

• Network measurements

• DNS, SPF, and DMARC-related scans

• Scripting

• Data analysis

• Writing research papers

Specific RequirementsBusiness travelBoth remote work and work in the officeLanguages ENGLISH Level ExcellentResearch Field Computer science Years of Research Experience 1 – 4Additional InformationSelection processApplications must be sent to this adress:Deadline: 06/01/2025 (January 5th 2025)Work Location(s)Number of offers available 1 Company/Institute LIG Country France GeofieldContact CityGrenoble WebsiteStreet46 avenue Félix Viallet Postal Code38000STATUS: EXPIREDShare this page

Expected salary

Location

Grenoble, Isère

Job date

Tue, 17 Dec 2024 23:32:12 GMT

To help us track our recruitment effort, please indicate in your email/cover letter where (vacanciesineu.com) you saw this job posting.