3
How to Describe DMARC in Simple Terms
Announcement by Employee - 10/9/2019 at 9:42 AM
Employee Post
Domain-based Message Authentication, Reporting & Conformance is the latest form of email authentication.  It makes sure that legitimate email authenticates against DKIM and SPF.  Also, it ensures that fraudulent email that tries to look legitimate gets blocked.

The alignment feature of DMARC prevents spoofing of the return path from address.  It matches the return path domain name with the visible from address domain name from the SPF check.  Then, it matches the return path domain name with the domain name in the DKIM signature.  An email needs to pass SPF authentication as well as DKIM authentication to be able to pass DMARC.

Senders tell receivers what to do with unauthenticated email via the DMARC policy.  This could include quarantining email that fails DMARC by moving it to the spam folder.  It could also include rejecting the email and not delivering it at all.

Receiving email servers send DMARC reports back to senders on a regular basis.  This gives them insight into which of their emails are passing DMARC, which are failing and why.

DMARC ensures the visible from address in an email is trustworthy.  It protects customers and your brand.  Cybercriminals are less likely to go after a domain that has DMARC in place.

Reply to Thread