Revised inbound email protocol security at the CSSF

In order to increase email security at the CSSF, all inbound emails are now checked with an email authentication protocol using Domain-based Message Authentication, Reporting & Conformance policies (DMARC) at the Domain Name System level (DNS), verifying server origin and digital signature of the email using the Sender Policy Framework (SPF) and DomainKeys Identified Mail (DKIM) protocols.

Any failure during these verification steps will result in the email not being delivered to its intended recipient(s).

Please make sure your DNS records are complete and correctly configured according to SPF/DKIM/DMARC best practices to avoid any rejected mails towards the CSSF.

Name	Description	Duration
cssf_cookies	Saves information regarding the user's consent to the use of cookies for each optional category.	1 year
ROUTEID	Technical cookie allowing load distribution.	Deleted when the browsing session ends
TBMCookie*	Security: This cookies protects the website against automated attacks.	Deleted when the browsing session ends
__utmvc	These first party cookies are set by a third party service to filter out malicious requests.	Deleted when the browsing session ends
__utmvm*	These first party cookies are set by a third party service to filter out malicious requests.	15 minutes

Name	Description	Duration
cssf_profile	This cookie adapts the website pages to the profile chosen by the visitor (professionals, markets, consumers).	1 year
pll_language	This cookie saves the user’s language choice.	1 year

Name	Description	Duration
_pk_id.#	Collects anonymous statistical data on the website consultations, such as the number of visits or the average time spent on the website. The data is processed in-house and is not shared with a third party.	1 year
_pk_ses.#	Collects anonymous statistical data for the tracking of the pages consulted during the browsing session. The data is processed in-house and is not shared with a third party.	30 minutes