Assignment 3.

Subject: Cryptography Subject Code: CS21104

Session: 2025-26 Semester: First
Name of Student: Raj Kumar Yadav Reg. No. 2025RCS21
Q. Explore the two E-Mail Security Mechanisms in which GMAIL is must and other one
of your choices. Justify and give your perspective which mechanism is safe and why.
Ans.
1. Gmail – E-Mail Security Mechanisms: Gmail is one of the most widely used email
services globally. It uses strong security layers to protect user accounts and data. Following
are the features that mages Google secure.
a. Two-Factor Authentication (2FA): Requires both password and OTP or Google
Authenticator approval. Even if someone steals the password, they cannot access the
account without the second verification step.
b. AI-based Spam and Phishing Protection: Gmail uses advanced artificial
intelligence algorithms to detect and block nearly 99.9% of spam, phishing attempts,
and emails containing malicious attachments before they reach the user's inbox. It also
sends alerts for suspicious login activity and enables confidential mode for self-
expiring emails.
c. End-to-End Encryption in Transit (TLS): Emails are automatically encrypted when
traveling between devices, preventing hackers from reading the content.
d. Security Alerts for Suspicious Login: If someone tries to sign in from a new device
or location, Gmail immediately sends alert notifications and blocks the login attempt
until verified.
2. Outlook (Microsoft Mail) – E-Mail Security Mechanisms: Outlook also provides strong
security for email users, especially for professional and corporate communication. There is
the following security measure that are discussed as.
a. Email Authentication Protocols (SPF, DKIM, DMARC): Outlook enforces strict
email authentication policies for senders, which check that the email is really from the
claimed domain and hasn’t been tampered with. These protocols help prevent spoofing
and phishing attacks.
b. End-to-End Encryption and Sensitivity Labels: Outlook offers built-in encryption
(Office 365 Message Encryption) to secure email content so only intended recipients
can read it. Sensitivity labels can be applied to automatically enforce privacy rules like
encryption, preventing forwarding or setting expiration dates.
c. Passwordless Login and Biometric Authentication: Users can log in using the
Microsoft Authenticator App or Windows Hello (fingerprint/face unlock), reducing
password theft risks.
d. Encrypted Email Option: Allows users to send encrypted messages that can only be
viewed by the intended recipient. This is helpful in organizations where sensitive data is
exchanged.
In general, we can say the Gmail is more secure for general users, students, and
individuals because it focuses heavily on blocking phishing attacks and unauthorized
access.
On the other hand, Outlook is safer for professional environments where encrypted
communication and policy-based protection are needed.