DMARC reports

How to setup PGP encryption for Forensic reports?

DMARC Analyzer doesn’t store the body of Forensic reports by default. It is possible privacy sensitive data is included in these emails. For analysis it will be harder as you don’t know which email causes your DMARC to fail.

To fix this problem we introduced a new method to view the Forensic reports. When a PGP key is added in your account we will start encrypting the complete Forensic report with this key. In your Forensic overview you can download the encrypted report and decrypt with your private key and password.

How to create a PGP key?

A PGP key consists of a private and public key combination. DMARC Analyzer doesn’t provide functionality to generate a key but there are tools available to generate. You can generate a key for example at pgpkeygen.com.

  • Your name: Your full name
  • Your email address: Your email address
  • Comments: This can be left empty
  • Algorithm: RSA
  • Key size: 4096
  • Expires: Never
  • Passphrase: A strong passphrase

 

Add your key into DMARC Analyzer

Go to the profile page and click on the public Keys button on the top right button bar.

On this page you can add your created public PGP key. Open your downloaded public key with a text editor and copy the contents. Paste the contents in the textarea on the page and click the save button.

DMARC Analyzer will now start encrypting your Forensic reports with this key.

Note: Encryption will only be applied on new received Forensic reports.

 

How to decrypt Forensic reports?

Encrypted mail messages can be found in your Forensic overview. Click on the “View” button at the mail headers. When an encrypted message is available the full message can be copied from the textarea. To decrypt your message use your generated private key and passphrase.

DMARC Analyzer doesn’t provide PGP decryption. On the internet several (online) tools are available to decrypt your messages. For example https://sela.io/pgp/ provides decryption. Pass in your private key, password and encrypted message. Click the decrypt button and you should see your message.