Domain-based Message Authentication, Reporting & Conformance (DMARC) provides email senders with more control in relation to how their email is authenticated by email providers.
Email authentication using DKIM and SPF goes a long way to ensuring emails are only ever sent from authorised mail servers and that messages aren’t modified whilst in transit.
The risk of Spammers forging the ‘From address’ on emails still remains and can generate seriously harmful results to brands and end-users.
DMARC is an effective reporting method that helps senders understand why authentication fails when emails are sent.
How does it work?
DNS enables domains to declare a DMARC policy that specifies whether SPF and DKIM are implemented.
The policy information contained in the DNS entries is used to instruct the email provider on how emails should be handled when authentication for any one of the DKIM and SPF methods fails.
DMARC policies remove variation in how each email provider handles failed authentication and limits the end-users potential for exposure to forged or Spam emails.
What are the benefits?
- Senders can receive periodic feedback reports from email providers with detailed information on why emails did not pass authentication.
- Elimination of direct domain spoofing and a reduction in the impact of phishing and fraudulent email messages.
- Consistent handling of failed authentication by email providers.
- Increased security and an improvement in trust of the email channel driving better email engagement and brand reputation.