HomeDomain-based Message Authentication, Reporting & Conformance

Domain-based Message Authentication, Reporting & Conformance

Leading email service and technology providers and organizations including OTA support DMARC as an emerging standard for reducing the threat of deceptive emails. The group's work includes a draft specification that helps create a feedback loop between legitimate email senders and receivers to make impersonation more difficult for phishers trying to send fraudulent email. DMARC helps to standardize how email receivers (ISPs and corporate networks), perform email authentication using the well-known email authentication SPF and DKIM mechanisms.  

2016 Audit of Email Authentication Practices; A Reality Check - Presentation (PDF)  I  Recorded Webinar (July 20, 2016)

2016 Online Trust Audit & Honor Roll
Assessment of Top 1,000 consumer facing sites adoption of consumer protection, data security and responsible privacy practices.

What is DMARC?

  • A multi-stakeholder effort to help provide domain owners enhanced brand security & integrity of the email channel.
  • Builds on lessons learned and the needs of brand owners and receiving networks.
  • Helps to address key deployment issues for of SPF and DKIM
  • Response to the need for a scalable and effective policy mechanisms
  • Helps to combat social engineering and phishing exploits by tying visible Mail User Agent (MUA) “from” to DKIM or SPF authenticated domain

Domain Owners & Email Senders Benefits

  • Enhanced brand protection
  • Ability to communicate to receiving networks and ISPs what to do with illegitimate email
  • Feedback loop to improve and monitor their authentication infrastructure
  • Visibility on both the abuse of their domain and to optimize authentication across all domains and subdomains

Receiving Networks & ISPs Benefits

  • Clarity for handling of un-authenticated & failing email
  • A uniform and scalable way to determine email legitimacy
  • Freedom to act on email with confidence – no more guessing
  • Scalable methods to provide feedback to Domain Owners

End User Benefits:

  • Greater confidence of the email channel
  • Significant reduction in risk of phishing from DMARC domains

Resources
Overview of Email Authentication

OTA Query Tool  for SPF & DMARC Records

DMARC & TLS (Agari)

DMARC Record Generator (Agari)

Dmarcian - DMARC & SPF Tools

DMARC Record Generator (Return Path)

Evaluating DMARC Effectiveness for the Financial Services Industry (Return Path) 

ValiMail - DMARC & SPF Tools

DMARC.ORG