DMARC Analyzer - PGP Encryption for Forensic Reports

This article contains information on encrypting and decrypting DMARC Forensic reports using PGP keys, including steps to generate a PGP key, add it to DMARC Analyzer, and decrypt reports for secure analysis of email authentication failures.

By default, DMARC Analyzer doesn’t store the body of Forensic reports. Sensitive data may be included in these emails. Analysis will be more difficult as you don’t know which email has caused DMARC to fail.

To fix this problem, there is a method to view the Forensic reports. Adding a PGP key to your account will start encrypting the Forensic reports. In your Forensic overview, you can download the encrypted report and decrypt it with your private key and password.

How to create a PGP key?

A PGP key consists of a private and public key combination.
The following software can be used to generate PGP keys: GnuPG / Gpg4win

• Your name: Your full name
• Your email address: Your email address
• Comments: This can be left empty
• Algorithm: RSA
• Key size: 4096
• Expires: Never
• Passphrase: A strong passphrase

Add your key into DMARC Analyzer

Navigate to the Account section by clicking on your profile name in the top bar and clicking on the Public Keys.

On this page, you can add your public PGP key. Open your downloaded public key with a text editor and copy the contents. Paste the contents in the text area on the page and click the save button.

DMARC Analyzer will now start encrypting your Forensic reports with this key.

How to decrypt Forensic reports?

Encrypted mail messages can be found in your Forensic overview. Click on the “View” button at the mail headers. When an encrypted message is available the entire message can be copied from the text area. To decrypt your message use your generated private key and passphrase.