heise PlusAbo
Anzeige

BSI: Make 2025 the year of email security!

All companies and organizations in Germany should improve their email security this year. The BSI provides a lot of help with this.

listen Print view
E-mail icon

(Image: Pavel Ignatov/Shutterstock.com)

2 min. read
iX Magazin
By
  • Manuel "HonkHase" Atug

The German Federal Office for Information Security (BSI), together with the eco Association and Bitkom, has proclaimed 2025 the year of email security. The aim is to make email traffic in Germany more secure across the board.

All companies and organizations are called upon to participate as part of the cyber nation. Regardless of their size, they have until August 15, 2025 to register for participation and apply for the BSI Hall of Fame.

Guidelines and measures

Companies and organizations that operate their own email infrastructure or offer such an infrastructure to customers are called upon by the BSI to implement two technical guidelines on secure email transport (BSI TR-03108) and email authentication (BSI TR-03182). The two technical guidelines to be implemented address six measures:

  1. Sender Policy Framework (SPF)
  2. DomainKeys Identified Mail (DKIM)
  3. Domain-based Message Authentication, Reporting and Conformance (DMARC)
  4. Domain Name System Security Extensions (DNSSEC)
  5. DNS-based Authentication of Named Entities (DANE)
  6. Transport Layer Security (TLS)
  7. As an alternative to DNSSEC: MTA Strict Transport Security (MTA-STS)

The BSI does not assume that companies and organizations already meet all the criteria. But the binding concession to implement them soon and to have already started is sufficient to be listed in the Hall of Fame.

Videos by heise

Help from the BSI

The BSI Alliance for Cybersecurity provides further assistance with explanation and implementation. The BSI also offers webinars, how-to-guides, tips & tricks via email, live events, podcasts, cooperation programmes, starter packages, competence group meetings, email checkers, consultations, measurements, networking and best practice exchanges between companies and organizations. All of this is intended to facilitate the transition to a secure e-mail environment.

This is why the BSI does not rely on regulation, but on cooperative collaboration to promote the Cybernation proclaimed by President Claudia Plattner. This is also the reason why the BSI offers visibility for all participants through the Hall of Fame.

The BSI input mask for binding registration can be found here. If you have any questions or suggestions, please contact the BSI at emailsicherheit@bsi.bund.de. On August 23 and 24, the BSI will publish the Hall of Fame of the Email Security Year 2025 at the Federal Government's Open Day.

(emw)

Don't miss any news – follow us on Facebook, LinkedIn or Mastodon.

This article was originally published in German. It was translated with technical assistance and editorially reviewed before publication.

Beliebte Bestenlisten

Alle Angebote
Newsletter heise-Bot heise-Bot Push Nachrichten Push Push-Nachrichten