DMARC - Wikipedia - Nikola's Digital Garden

#readwise # DMARC - Wikipedia ![rw-book-cover](https://readwise-assets.s3.amazonaws.com/static/images/article3.5c705a01b476.png) ## Related - [[What Is a DMARC Policy All About the 3 Policies - DMARC Analyzer]] ## Metadata - Author: [[en.wikipedia.org]] - Full Title: DMARC - Wikipedia - URL: https://en.wikipedia.org/wiki/DMARC ## Highlights - **DMARC (Domain-based Message Authentication, Reporting and Conformance) is an email authentication protocol. It is designed to give email domain owners the ability to protect their domain from unauthorized use, commonly known as email spoofing.** The purpose and primary outcome of implementing DMARC is to protect a domain from being used in business email compromise attacks, phishing emails, email scams and other cyber threat activities. **Once the DMARC DNS entry is published, any receiving email server can authenticate the incoming email based on the instructions published by the domain owner within the DNS entry. If the email passes the authentication, it will be delivered and can be trusted. If the email fails the check, depending on the instructions held within the DMARC record the email could be delivered, quarantined or rejected.** For example, one email forwarding service delivers the mail, but as "From: no-reply@forwarding service". - ==**DMARC extends two existing email authentication mechanisms, Sender Policy Framework (SPF) and DomainKeys Identified Mail (DKIM). It allows the administrative owner of a domain to publish a policy in their DNS records to specify which mechanism (DKIM, SPF or both) is employed when sending email from that domain; how to check the From: field presented to end users; how the receiver should deal with failures - and a reporting mechanism for actions performed under those policies.**== - **A DMARC policy allows a sender's domain to indicate that their emails are protected by SPF and/or DKIM, and tells a receiver what to do if neither of those authentication methods passes – such as to reject the message or quarantine it.** The policy can also specify how an email receiver can report back to the sender's domain about messages that pass and/or fail.[3] - DMARC operates by checking that the domain in the message's From: field (also called "RFC5322.From"[2]) is "aligned" with other authenticated domain names. If either SPF or DKIM alignment checks pass, then the DMARC alignment test passes.