DMARC (Domain-based Message Authentication, Reporting and Conformance)
Building on efforts begun in 2010, a group of leading organizations came together in the spring of 2011 to collaborate on a method for combating fraudulent email at Internet-scale. The mission was two-fold:
- Enable senders to publish easily discoverable policies on unauthenticated email
- Enable receivers to provide authentication reporting to senders so that they can improve and monitor their authentication infrastructure
As such DMARC is the result of collaboration between the largest receivers of email at that time, AOL, Comcast, GMail, Hotmail, Netease, Yahoo! Mail.
FutureRange uses onDMARC by Red Sift to manage the DMARC process.
Almost 90% of email attacks are based on fake sender identities, either of brands (83%) or individuals (6%), according to recent research. One type of impersonation — what is known as exact-domain impersonation — occurs when scammers use a domain in the “From” field of the message that is actually owned by the organization they’re impersonating. But this type of impersonation can be stopped by email authentication (DMARC).
If DMARC is so great, why doesn’t everyone have it?
The unfortunate reality is most DMARC projects end in failure or are never-ending. Often companies are reluctant to move DMARC to an enforcement policy (p=reject or p=quarantine) because they have significant SPF configuration issues that they must first resolve.
Red Sifts award-winning cloud-based application (onDMARC) enables organizations to utilize fast automated business email protection, by quickly configuring SPF, DKIM, and DMARC for all legitimate email sources in weeks, not months.
If you move to DMARC enforcement and have SPF problems, you run the risk of blocking “good” emails by accident, onDARMC gives you peace of mind when moving through the DMARC process. If you have more than 10 email sources you can take advantage of onDAMRC dynamic SPF.