Symptom
Which security tools does SuccessFactors use for emails?
Environment
SAP SuccessFactors HXM Suite
Resolution
-
The SuccessFactors hosted solution can be configured to deliver email notifications for various processes. Customers must first ensure that their SuccessFactors data has valid email addresses for all end users. SuccessFactors will only send out emails to the email addresses stored within the Customer’s database, which is encrypted at the AES 256-bit standard.
- All email notifications delivered from the SuccessFactors hosted solution would be securely encrypted over Sendmail\TLS. SuccessFactors uses Cisco IronPort email appliances for encrypted email distribution.
-
Additional protection against email spoofing can be provided through implementation of the Sender Policy Framework (SPF), which is supported by SuccessFactors. SPF is an email validation system designed to prevent email spam by detecting email spoofing, a common vulnerability, by verifying sender IP addresses.
-
SPF allows Customer administrators to specify which hosts are allowed to send mail from a given domain by creating a specific SPF record (or TXT record) in the Domain Name System (DNS). Mail exchangers use the DNS to check that mail from a given domain is being sent by a host sanctioned by that domain's administrators.
-
Adopting SPF verification on Customer mail servers will ensure that emails are being sent only from SuccessFactors.
Keywords
TLS encrypted, SF encrypted, security, SuccessFactors encrypted emails, TLS , KBA , LOD-SF-PLT-SEC , Security Reports , How To