Email Denial of Service (Part 5): STRIDEing through Email Threats
This is part five is a series of articles looking at the STRIDE Threat Model to identify and mitigate the threats risks posed to Email security.
In this article we look at Denial of Service (DoS). If you missed Part 4, you can find the article here
Denial of Service (the Threat)
Denial of Service (DoS) is a type of attack on a service that disrupts its normal function and prevents other users from accessing it. Most commonly, the target for a DoS attack is an online service such as a website, though attacks can also be launched against networks, machines or even a single program.
Availability (the Property)
For any information system to serve its purpose, information should be available when and where it is rightly needed. The main concern with Availability is ensuring that the information should be available when authorised users need to access it.
Countermeasures - Technical Controls
Resiliency and Load Balancing are the primary technical controls that can be implemented to support availability. If your business is utilising a cloud platform such as Microsoft 365 or Google Workspace then the responsibility for this resides with the Service Provider. However, the accountability for availability still resides with the organisation.
Backups are a vital component of ensuring availability and with the continued rise of ransomware attacks, offline backups are a vital aspect of preparing for such an occurrence.
Access Control - ensure mechanisms and policies are defined and in place around roles and privileges.
Monitoring and Auditing - reviewing audit logs and monitoring for signs that Email accounts may have been compromised is a useful detective control.
If you would like more information or would like StarSwift Information Security to support you with the implementation of Email Security, please do not hesitate to get in touch.
Please contact us for more information.