Abstract—This paper investigated Information Technology (IT) security on the email systems at three selected Western Australian (WA) local government councils. The study’s testing and analysis was used and based on several industries and national benchmarking standards for investigated the email system security at all three selected councils. The scope of the analysis included the email threats, architecture, the infrastructure devices, port scanning and vulnerabilities on the email server, email spoofing and email vendor auditing. There were some common problems in all three selected councils that maybe applied in other contexts. In addition, the study aims to provide an email security framework which can be easily adopted and is flexible enough for use in any city councils or other organizations.
Index Terms—Email System, Implementation Framework, IT security.
The authors are with Security Research Centre, Edith Cowan University Perth, Western Australia.
Cite: Sunsern Limwiriyakul and Craig Valli, "Results from the Deployment of a Targeted Security Testing Framework for the Testing of Email Systems in Local Government in Western Australia," International Journal of Information and Electronics Engineering vol. 1, no. 1, pp. 16-22, 2011.