SlideShare ist ein Scribd-Unternehmen logo

Getting startedwithdmarc5

G
grafica_corella

qaea

Business
1 von 13
Downloaden Sie, um offline zu lesen
Getting Started With DMARC page 1 | Share this: Getting Started With DMARC
Table Of Contents Part 1: Getting to Know DMARC Page 3 Part 2: History of DMARC Page 6 Part 3: How DMARC Works Page 8 Part 4: Getting Started with DMARC Page 10 Part 5: What Next? Page 12 Contact Page 13
What is DMARC? DMARC stands for Domain-based Message Authentication, Reporting and Conformance. It lets email senders apply a policy to their sending domains that instructs mailbox providers on what to do if their email authentication (SPF and DKIM) fails — such as quarantine the message to the junk folder or reject the email outright from being delivered to the inbox holder, which is joint customer of both the sender and mailbox provider). It also provides senders with information about their sending infrastructure to help improve overall email governance and adherence to best practices. Getting Started With DMARC page 3 | Share this: domain threats, those attacks that are leveraging a domain you own and control, like phishing, loss to both consumers and brands but also indirect costs associated with the loss of consumer trust and erosion of brand equity and reputation. Mailbox providers including Gmail, Yahoo!, AOL Brands need to arm themselves with information and tools to protect their valuable customers information to protect brands and consumers from direct-domain threats. DMARC Helps Senders and Mailbox Providers By using DMARC, senders: 1. Protect themselves and their customers from direct-domain threats. 2. Get valuable feedback about emails that don’t pass authentication. 3. Can instruct mailbox providers on how they should handle messages that fail authentication. By using DMARC, mailbox providers: 1. Can better identify legitimate mailers from spammers. 2. bad emails instead of good ones. 3. Help protect their mailbox holders. Part 1: Getting to Know DMARC
DMARC Matters for Your Email Program Email is a powerful channel for generating revenue and building strong relationships with customers. Any company that relies on email to make money needs to ensure their program and customers are protected. This means taking proactive steps to block fraudulent and mailicious messages from reaching customers. Getting Started With DMARC page 4 | Share this: It is not a matter of if, but when cybercriminals will spoof your brand. DMARC provides a mechanism to help block phishing attacks on your valuable customers, which improves their overall experience with your brand. I’m a Marketer… Shouldn’t the Security Team Worry About DMARC? Phishing is a companywide responsibility. Both marketing and security teams need to care about DMARC as both teams have a vested interest. Marketers spend a lot of time and effort and resources in promoting brand awareness and email engagement. A phishing attack could destroy that in a matter of minutes. Security teams focus on protecting company assets. And the brands’ customer base is likely the largest asset the company has. Security teams need to partner with Marketing colleagues to protect valuable customers and the revenue generated through the email channel. Email brand protection is a joint imperative and both Marketing and Security teams have a shared interest in protecting the brand and customers from malicious email traffic.
80 thousand 60% Getting Started With DMARC page 5 | Share this: DMARC Stats 100 million + Mailbox providers rejected hundreds of millions of messages each year because they failed the DMARC authentication check Over 80,000 domains have deployed domain-wide policies via the DMARC standard 60% of the top sending domains publishing policy come from companies DMARC.org DMARC protects almost two-thirds of the world’s consumer mailboxes and 80% of typical US customers– assuming both the sender and mailbox provider are implementing DMARC
How DMARC Got Started Problems with SPF and DKIM Since 2004, industry and Internet standards groups, senders, mailbox providers, and vendors (such as Return Path) have been working on establishing email authentication standards to prevent email fraud. Getting Started With DMARC page 6 | Share this: Adoption of these authentication standards, including SPF and DKIM, became widespread across the industry, dramatically reducing spammers’ ability to impersonate domains consumers trust. Even so, this industry consortium noticed a problem with the authentication process: the problem of what to do with unauthenticated mail. Private Communications Before DMARC was established, senders and receivers privately communicated what to do when authentication failed. In 2007, PayPal worked privately with Yahoo and Gmail -- telling them what to do with PayPal’s unauthenticated email. The results of this partnership were great: PayPal experienced a significant decrease in suspected fraudulent email. Though these private efforts were successful, they required a lot of manual coordination. The group streamlined the process and created a public standard to let everyone give directives to mailbox providers about what to do with unauthenticated mail. This standard became DMARC. Where DMARC Is Today Today, many of these same parties form an unincorporated working group at DMARC.org. The group is dedicated to developing Internet standards to reduce the threat of email phishing and improve coordination between mailbox providers and email senders. Part 2: History of DMARC
Getting Started With DMARC page 7 | Share this: How DMARC Solved Problems for SPF and DKIM Though SPF and DKIM helped reduce fraud, they did not turn out to be the silver bullet for phishing. Lack of standard use and enforcement by ISPs and the high risk of blocking legitimate email stalled progress. Problems with SPF and DKIM SPF works by publishing a record authorizing the IP addresses allowed to send on behalf of a domain. SPF does not survive email forwarding, so it can be easily broken. DKIM attempted to resolve this problem by cryptographically signing an email. Though DKIM survives forwarding and is difficult to forge, it is expensive and difficult to adopt due to the computational overhead, complexity, configuration errors, and more. DMARC to the Rescue DMARC resolves most of these issues by not only using both SPF and DKIM, but by providing reports on authentication failures and giving policy control to the sender on how to handle failures by doing nothing, quarantining the failure, or blocking it. As a result, SPF, DKIM and DMARC greatly reduce the false positive issue.
Getting Started With DMARC page 8 | Share this: DMARC lets senders indicate within their DNS record that their email is protected by SPF and/or DKIM -- and tells mailbox providers what to do if that authentication fails. DMARC doesn’t directly address whether or not an email is fraudulent. Instead, messages are considered aligned if the RFC 5322 DMARC record conforms to the domain In SPF’s case, the MFROM domain has to exactly match the organizational domain of the RFC5322 From domain. In DKIM’s case, the organizational domain of the d= value in the DKIM signature has to match the RFC5322 From domain. Only one the email to be considered in alignment. Relaxed vs. Strict Alignment Senders can specify a strict or relaxed alignment; relaxed alignment is the default. Relaxed alignment allows for partial matches between SPF and/or DKIM record(s) and the RFC 5322. For instance, subdomains of a given domain can be considered aligned. An example of relaxed alignment is: facebook.com and groups.facebook.com. Strict alignment requires exact matches. An example of strict alignment is: facebook.com and facebook.com. Part 3: How DMARC Works Why Does DMARC check the RFC5322 From Domain? The RFC5322 From domain (1) is highly visible (2) is the domain email users come into contact with most easily, (3) is one of the most-forged parts of the email body, (4) is the only one that is guaranteed to be present, and (5) is displayed by MUAs in a way that strongly suggests it is the true originator of the message. NOTE: An organizational domain is the brand or registered domain. For example, facebook.com is an organizational domain while groups.facebook.com is a sub-domain.
Who Uses Relaxed or Strict Alignment Relaxed alignment can be useful for senders who contract the handling of certain mail streams (such as bounce processing) to third-parties. These senders can both use third-parties and deploy DMARC without having any negative impact. Generally, financial institutions or other high-profile organizations may be most interested in strict alignment. Getting Started With DMARC page 9 | Share this: Reporting With DMARC, senders can receive reports that include data about authentication issues they are having with their email streams. This reporting feedback loop makes the email ecosystem a safer place by allowing senders and receivers to communicate automatically about potential abuse. Senders can choose to receive two types of reporting: aggregate and/or message-level (forensic). The reports include information to give senders insight into their authentication results so they can take action on any needed corrections, and calibrate an appropriate DMARC policy. Receivers will send aggregate reports for all emails. Receivers who support forensic reporting will send forensic reports only if either SPF or DKIM do not pass. These reports can be difficult to understand and an in-house solution to parse the data must be built or there are third-party solutions like Return Path that display the DMARC reporting data in an easy-to-use portal so that efforts can be focused on policy enforcement and correcting authentication issues.
Getting Started With DMARC page 10 | Share this: Before you start blocking suspected fraudulent messages, you need to gain visibility in to all of your company’s outbound mail streams. Conduct an audit to ensure that all IPs, domains, and sending environments are accounted for and are properly being authenticated. Aggregate and Forensic Reports Mailbox providers send both types of ruf:mailto= or rua:mailto= tags). 3 sections: Information about the mailbox provider that sent the report A description of your DMARC Record A summary of authentication results. Look for the areas that show neutral, none, or failed results. Forensic report are sent in AFRF or IODEF in the “rf” tag. By default, it’s AFRF. You’ll get per-message reports on individual messages that fail SPF and/or DKIM. Make sure you don’t click on any links. Use the email headers to help your investigation. Congratulations, you are about to join the elite group of top senders that have already published a DMARC policy. Follow the steps below to get started! 2 Open the email headers from the emails you send. Identify the following: • Return Path/MFrom/Envelope From domain • Friendly From domain • DKIM-Signature (look for the “d=” tag) Make sure the domains are aligned Part 4: Getting Started with DMARC 1 Identify and Authenticate Verify Alignment 3 Learn the DMARC tags There are numerous DMARC tags available, but you don’t have to use them all. Focus on the v, p, rua, and ruf tags. 4 Create an Entry Create an entry in DNS for the zone “v=DMARC1; p=none; rua=mailto:report@ example.com”
Getting Started With DMARC page 11 | Share this: 5 Set Policy to p=”none” Quarantine Though you can specify three types of policy: reject, quarantine, or none, set the mailbox providers not to take action if the DMARC check fails -- allowing you to work out any kinks with your records. Start collecting reports to see if anyone is to receive the daily aggregate reports using the rua tag from the mailbox providers by specifying your email address. Request aggregate reports in the beginning, (ruf ) challenging to fully understand due to the magnitude of data that is included. Senders can quickly get inundated with the DMARC reports. Return Path’s email brand protection solutions can help with both issues though data collection and reporting that can help you make sense of it. Go here for more information. that all of your outbound mail streams are authenticating properly, take the next step and set the DMARC DNS record ‘p=’ tag to “quarantine.” An example record is: “v=DMARC1; p=quarantine; rua=mailto:dmarc_agg@auth.returnpath.net; ruf=mailto:dmarc_afrf@auth.returnpath.net” During this time, diligently check your reports within the Domain Secure solution user interface. errors, set the DMARC DNS record ‘p=’ tag to “reject.” An example DMARC record is: “v=DMARC1; p=reject; rua=mailto:dmarc_agg@auth.returnpath.net; ruf=mailto:dmarc_afrf@auth.returnpath.net” Place your domains on Return Path’s Registry. This instructs the mailbox providers to block suspected fraudulent messages. 6 Monitor 7 8 Block
Getting Started With DMARC page 12 | Share this: Part 5: What Next? Use Return Path to Analyze DMARC Though DMARC is a public standard, Return Path’s email brand protection solutions show the results of DMARC reporting in a format that is easy to read and understand so that you can focus on making important policy decisions on a domain by domain basis. The solution also analyzes and extracts data to identify trends, phishing outbreaks, authentication failures, and authentication failure resolutions. Enhance DMARC Data with Private Data Return Path receives more email data from major ISPs than anyone else in the world. Return Path email brand protection customers get access to this data, which provides the greatest visibility and insight available into email brand abuse. Use the Return Path Registry DMARC is not the only mechanism through which policy can be asserted. With either the Domain Protect or Domain Secure solution, clients can also choose to place their domains on Return Path’s Registry. Path publishes to mailbox providers in our private channel. The Registry allows Return Path clients to specify what they would like mailbox providers to do with their unauthenticated mail. Protect your brand and your customers from email brand abuse Do your part in the war against phishing and brand abuse by educating yourself on the full-spectrum of threats, the capabilities and limitations of DMARC, authenticating your outbound mail using SPF and DKIM, and working collaboratively with your marketing and security teams to implement DMARC as customers. Sources: http://googleonlinesecurity.blogspot.com/2013/12/internet-wide-efforts- to-fight-email.html http://www.returnpath.com/solution-content/dmarc-support/ http://www.techsneeze.com/how-parse-dmarc-reports https://github.com/linkedin/dmarc-msys/ https://github.com/thinkingserious/sendgrid-python-dmarc-parser http://www.trusteddomain.org/opendmarc/ http://landing.returnpath.com/dmarc
About Return Path Return Path is the worldwide leader in email intelligence. We analyze more data about email than anyone else in the world and use that data to power products that ensure that only emails people want and expect reach the inbox. Our industry-leading email intelligence solutions utilize the world’s most comprehensive set of data to maximize the performance and accountability of email, build trust across the entire email ecosystem and protect users from spam and other abuse. We help businesses build better relationships with their customers and improve their email ROI; and we help ISPs and other mailbox providers enhance network performance and drive customer retention. Information about Return Path can be found at: returnpath.com USA (Corporate Headquarters) rpinfo@returnpath.com Australia rpinfo-australia@returnpath.com United Kingdom rpinfo-uk@returnpath.com Brazil rpinfo-brazil@returnpath.com Canada rpinfo-canada@returnpath.com Germany rpinfo-germany@returnpath.com France rpinfo-france@returnpath.com

Empfohlen

Protecting Users from Fraud
Protecting Users from FraudProtecting Users from Fraud
Protecting Users from Fraud
Barry Jones
 
Protect your domain with DMARC
Protect your domain with DMARCProtect your domain with DMARC
Protect your domain with DMARC
Contactlab
 
Using DMARC to Improve Your Email Reputation
Using DMARC to Improve Your Email ReputationUsing DMARC to Improve Your Email Reputation
Using DMARC to Improve Your Email Reputation
Terry Zink
 
DMARC Overview
DMARC OverviewDMARC Overview
DMARC Overview
OWASP Delhi
 
How Cybercriminals Cheat Email Authentication
How Cybercriminals Cheat Email AuthenticationHow Cybercriminals Cheat Email Authentication
How Cybercriminals Cheat Email Authentication
Return Path
 
Fighting Email Abuse with DMARC
Fighting Email Abuse with DMARCFighting Email Abuse with DMARC
Fighting Email Abuse with DMARC
Kurt Andersen
 
What is dmarc
What is dmarcWhat is dmarc
What is dmarc
Godmarc
 
Infographic: How to Prevent Email Fraud with DMARC
Infographic: How to Prevent Email Fraud with DMARCInfographic: How to Prevent Email Fraud with DMARC
Infographic: How to Prevent Email Fraud with DMARC
Return Path
 

Empfohlen

Protecting Users from Fraud
Protecting Users from FraudProtecting Users from Fraud
Protecting Users from Fraud
Barry Jones
 
Protect your domain with DMARC
Protect your domain with DMARCProtect your domain with DMARC
Protect your domain with DMARC
Contactlab
 
Using DMARC to Improve Your Email Reputation
Using DMARC to Improve Your Email ReputationUsing DMARC to Improve Your Email Reputation
Using DMARC to Improve Your Email Reputation
Terry Zink
 
DMARC Overview
DMARC OverviewDMARC Overview
DMARC Overview
OWASP Delhi
 
How Cybercriminals Cheat Email Authentication
How Cybercriminals Cheat Email AuthenticationHow Cybercriminals Cheat Email Authentication
How Cybercriminals Cheat Email Authentication
Return Path
 
Fighting Email Abuse with DMARC
Fighting Email Abuse with DMARCFighting Email Abuse with DMARC
Fighting Email Abuse with DMARC
Kurt Andersen
 
What is dmarc
What is dmarcWhat is dmarc
What is dmarc
Godmarc
 
Infographic: How to Prevent Email Fraud with DMARC
Infographic: How to Prevent Email Fraud with DMARCInfographic: How to Prevent Email Fraud with DMARC
Infographic: How to Prevent Email Fraud with DMARC
Return Path
 
How to Implement DMARC/DKIM/SPF to Stop Email Spoofing/Phishing: The Definiti...
How to Implement DMARC/DKIM/SPF to Stop Email Spoofing/Phishing: The Definiti...How to Implement DMARC/DKIM/SPF to Stop Email Spoofing/Phishing: The Definiti...
How to Implement DMARC/DKIM/SPF to Stop Email Spoofing/Phishing: The Definiti...
Gangcai Lin
 
What You Need to Know About Email Authentication
What You Need to Know About Email AuthenticationWhat You Need to Know About Email Authentication
What You Need to Know About Email Authentication
Kurt Andersen
 
What is DMARC?
What is DMARC?What is DMARC?
What is DMARC?
Godmarc
 
How to Block NDR Spam
How to Block NDR SpamHow to Block NDR Spam
How to Block NDR Spam
GFI Software
 
How to Keep Spam Off Your Network
How to Keep Spam Off Your NetworkHow to Keep Spam Off Your Network
How to Keep Spam Off Your Network
GFI Software
 
Article on DMARC
Article on DMARCArticle on DMARC
Article on DMARC
fatima javaid
 
Spam and Anti-spam - Sudipta Bhattacharya
Spam and Anti-spam - Sudipta BhattacharyaSpam and Anti-spam - Sudipta Bhattacharya
Spam and Anti-spam - Sudipta Bhattacharya
sankhadeep
 
E Mail & Spam Presentation
E Mail & Spam PresentationE Mail & Spam Presentation
E Mail & Spam Presentation
newsan2001
 
What is SPAM?
What is SPAM?What is SPAM?
What is SPAM?
Yavuz Adabalı
 
How an Enterprise SPAM Filter Works
How an Enterprise SPAM Filter Works How an Enterprise SPAM Filter Works
How an Enterprise SPAM Filter Works
Pinpointe On-Demand
 
Email basics
Email basicsEmail basics
Email basics
SeniorServices
 
Messaging and Web Security
Messaging and Web SecurityMessaging and Web Security
Messaging and Web Security
GFI Software
 
Spamming
SpammingSpamming
Spamming
Yash Shrivastava
 
Jak ochránit vaší značku a doménu s technologií DMARC
Jak ochránit vaší značku a doménu s technologií DMARCJak ochránit vaší značku a doménu s technologií DMARC
Jak ochránit vaší značku a doménu s technologií DMARC
Mailkit
 
Spamming and Spam Filtering
Spamming and Spam FilteringSpamming and Spam Filtering
Spamming and Spam Filtering
iNazneen
 
E mail image spam filtering techniques
E mail image spam filtering techniquesE mail image spam filtering techniques
E mail image spam filtering techniques
ranjit banshpal
 
DMARC360 Guide
DMARC360 GuideDMARC360 Guide
DMARC360 Guide
DMARC360
 
DMARC Implementation across all domains
DMARC Implementation across all domainsDMARC Implementation across all domains
DMARC Implementation across all domains
CTM360
 
GoDMARC - Block Email Phishing
GoDMARC - Block Email PhishingGoDMARC - Block Email Phishing
GoDMARC - Block Email Phishing
Tarun Arora
 
A guide to email spoofing
A guide to email spoofingA guide to email spoofing
A guide to email spoofing
MattChapman50
 
2017 Deliverabilty & Beyond - What Eloquans Need to Know
2017 Deliverabilty & Beyond - What Eloquans Need to Know2017 Deliverabilty & Beyond - What Eloquans Need to Know
2017 Deliverabilty & Beyond - What Eloquans Need to Know
Chris Arrendale
 
[Tips/Tricks] Unlocking Deliverability With Marketo Engage.pdf
[Tips/Tricks] Unlocking Deliverability With Marketo Engage.pdf[Tips/Tricks] Unlocking Deliverability With Marketo Engage.pdf
[Tips/Tricks] Unlocking Deliverability With Marketo Engage.pdf
AkandeDavis1
 

Weitere ähnliche Inhalte

Was ist angesagt?

How to Implement DMARC/DKIM/SPF to Stop Email Spoofing/Phishing: The Definiti...
How to Implement DMARC/DKIM/SPF to Stop Email Spoofing/Phishing: The Definiti...How to Implement DMARC/DKIM/SPF to Stop Email Spoofing/Phishing: The Definiti...
How to Implement DMARC/DKIM/SPF to Stop Email Spoofing/Phishing: The Definiti...
Gangcai Lin
 
Spam and Anti-spam - Sudipta Bhattacharya
Spam and Anti-spam - Sudipta BhattacharyaSpam and Anti-spam - Sudipta Bhattacharya
Spam and Anti-spam - Sudipta Bhattacharya
sankhadeep
 
E Mail & Spam Presentation
E Mail & Spam PresentationE Mail & Spam Presentation
E Mail & Spam Presentation
newsan2001
 

Was ist angesagt? (16)

How to Implement DMARC/DKIM/SPF to Stop Email Spoofing/Phishing: The Definiti...
How to Implement DMARC/DKIM/SPF to Stop Email Spoofing/Phishing: The Definiti...How to Implement DMARC/DKIM/SPF to Stop Email Spoofing/Phishing: The Definiti...
How to Implement DMARC/DKIM/SPF to Stop Email Spoofing/Phishing: The Definiti...
 
What You Need to Know About Email Authentication
What You Need to Know About Email AuthenticationWhat You Need to Know About Email Authentication
What You Need to Know About Email Authentication
 
What is DMARC?
What is DMARC?What is DMARC?
What is DMARC?
 
How to Block NDR Spam
How to Block NDR SpamHow to Block NDR Spam
How to Block NDR Spam
 
How to Keep Spam Off Your Network
How to Keep Spam Off Your NetworkHow to Keep Spam Off Your Network
How to Keep Spam Off Your Network
 
Article on DMARC
Article on DMARCArticle on DMARC
Article on DMARC
 
Spam and Anti-spam - Sudipta Bhattacharya
Spam and Anti-spam - Sudipta BhattacharyaSpam and Anti-spam - Sudipta Bhattacharya
Spam and Anti-spam - Sudipta Bhattacharya
 
E Mail & Spam Presentation
E Mail & Spam PresentationE Mail & Spam Presentation
E Mail & Spam Presentation
 
What is SPAM?
What is SPAM?What is SPAM?
What is SPAM?
 
How an Enterprise SPAM Filter Works
How an Enterprise SPAM Filter Works How an Enterprise SPAM Filter Works
How an Enterprise SPAM Filter Works
 
Email basics
Email basicsEmail basics
Email basics
 
Messaging and Web Security
Messaging and Web SecurityMessaging and Web Security
Messaging and Web Security
 
Spamming
SpammingSpamming
Spamming
 
Jak ochránit vaší značku a doménu s technologií DMARC
Jak ochránit vaší značku a doménu s technologií DMARCJak ochránit vaší značku a doménu s technologií DMARC
Jak ochránit vaší značku a doménu s technologií DMARC
 
Spamming and Spam Filtering
Spamming and Spam FilteringSpamming and Spam Filtering
Spamming and Spam Filtering
 
E mail image spam filtering techniques
E mail image spam filtering techniquesE mail image spam filtering techniques
E mail image spam filtering techniques
 

Ähnlich wie Getting startedwithdmarc5

GoDMARC - Block Email Phishing
GoDMARC - Block Email PhishingGoDMARC - Block Email Phishing
GoDMARC - Block Email Phishing
Tarun Arora
 
Safeguard Your Brand: Introducing yourDMARC's Advanced Email Security Solutions
Safeguard Your Brand: Introducing yourDMARC's Advanced Email Security SolutionsSafeguard Your Brand: Introducing yourDMARC's Advanced Email Security Solutions
Safeguard Your Brand: Introducing yourDMARC's Advanced Email Security Solutions
yourDMARC
 
2010 Spam Filtered World Fv
2010 Spam Filtered World Fv2010 Spam Filtered World Fv
2010 Spam Filtered World Fv
cactussky
 

Ähnlich wie Getting startedwithdmarc5 (20)

DMARC360 Guide
DMARC360 GuideDMARC360 Guide
DMARC360 Guide
 
DMARC Implementation across all domains
DMARC Implementation across all domainsDMARC Implementation across all domains
DMARC Implementation across all domains
 
GoDMARC - Block Email Phishing
GoDMARC - Block Email PhishingGoDMARC - Block Email Phishing
GoDMARC - Block Email Phishing
 
A guide to email spoofing
A guide to email spoofingA guide to email spoofing
A guide to email spoofing
 
2017 Deliverabilty & Beyond - What Eloquans Need to Know
2017 Deliverabilty & Beyond - What Eloquans Need to Know2017 Deliverabilty & Beyond - What Eloquans Need to Know
2017 Deliverabilty & Beyond - What Eloquans Need to Know
 
[Tips/Tricks] Unlocking Deliverability With Marketo Engage.pdf
[Tips/Tricks] Unlocking Deliverability With Marketo Engage.pdf[Tips/Tricks] Unlocking Deliverability With Marketo Engage.pdf
[Tips/Tricks] Unlocking Deliverability With Marketo Engage.pdf
 
DMARC adaption Case Study in Rakuten JPAAWG 2nd General Meeting
DMARC adaption Case Study in Rakuten JPAAWG 2nd General MeetingDMARC adaption Case Study in Rakuten JPAAWG 2nd General Meeting
DMARC adaption Case Study in Rakuten JPAAWG 2nd General Meeting
 
Safeguard Your Brand: Introducing yourDMARC's Advanced Email Security Solutions
Safeguard Your Brand: Introducing yourDMARC's Advanced Email Security SolutionsSafeguard Your Brand: Introducing yourDMARC's Advanced Email Security Solutions
Safeguard Your Brand: Introducing yourDMARC's Advanced Email Security Solutions
 
Sender Policy Framework (SPF): An Email Authentication Technique
Sender Policy Framework (SPF): An Email Authentication TechniqueSender Policy Framework (SPF): An Email Authentication Technique
Sender Policy Framework (SPF): An Email Authentication Technique
 
Using Return Path Data to Protect Your Brand: Security Breakout Session - NYC
Using Return Path Data to Protect Your Brand: Security Breakout Session - NYCUsing Return Path Data to Protect Your Brand: Security Breakout Session - NYC
Using Return Path Data to Protect Your Brand: Security Breakout Session - NYC
 
An Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsAn Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation Requirements
 
Dmarc is your savior
Dmarc is your saviorDmarc is your savior
Dmarc is your savior
 
NetSuite Email Campaigns Best Practices for Delivering Results
NetSuite Email Campaigns Best Practices for Delivering ResultsNetSuite Email Campaigns Best Practices for Delivering Results
NetSuite Email Campaigns Best Practices for Delivering Results
 
An Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation RequirementsAn Introduction To The DMARC SMTP Validation Requirements
An Introduction To The DMARC SMTP Validation Requirements
 
Neuailes Global Technologies Pvt Ltd
Neuailes Global Technologies Pvt LtdNeuailes Global Technologies Pvt Ltd
Neuailes Global Technologies Pvt Ltd
 
Eloqua Grande Guide to Deliverability and Privacy
Eloqua Grande Guide to Deliverability and PrivacyEloqua Grande Guide to Deliverability and Privacy
Eloqua Grande Guide to Deliverability and Privacy
 
Technical Guide to Great Delivery
Technical Guide to Great DeliveryTechnical Guide to Great Delivery
Technical Guide to Great Delivery
 
The Complete Guide to B2B Email Marketing
The Complete Guide to B2B Email MarketingThe Complete Guide to B2B Email Marketing
The Complete Guide to B2B Email Marketing
 
"Being creative with data" 25th November - Neteffekt presentation
"Being creative with data" 25th November - Neteffekt presentation"Being creative with data" 25th November - Neteffekt presentation
"Being creative with data" 25th November - Neteffekt presentation
 
2010 Spam Filtered World Fv
2010 Spam Filtered World Fv2010 Spam Filtered World Fv
2010 Spam Filtered World Fv
 

Kürzlich hochgeladen

👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
rajveerescorts2022
 
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
lizamodels9
 
Chandigarh Escorts Service 📞8868886958📞 Just📲 Call Nihal Chandigarh Call Girl...
Chandigarh Escorts Service 📞8868886958📞 Just📲 Call Nihal Chandigarh Call Girl...Chandigarh Escorts Service 📞8868886958📞 Just📲 Call Nihal Chandigarh Call Girl...
Chandigarh Escorts Service 📞8868886958📞 Just📲 Call Nihal Chandigarh Call Girl...
Sheetaleventcompany
 
BAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
BAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRLBAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
BAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
kapoorjyoti4444
 
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
amitlee9823
 
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
amitlee9823
 
Al Mizhar Dubai Escorts +971561403006 Escorts Service In Al Mizhar
Al Mizhar Dubai Escorts +971561403006 Escorts Service In Al MizharAl Mizhar Dubai Escorts +971561403006 Escorts Service In Al Mizhar
Al Mizhar Dubai Escorts +971561403006 Escorts Service In Al Mizhar
allensay1
 
Uneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration PresentationUneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration Presentation
uneakwhite
 
Call Girls In Nangloi Rly Metro ꧂…….95996 … 13876 Enjoy ꧂Escort
Call Girls In Nangloi Rly Metro ꧂…….95996 … 13876 Enjoy ꧂EscortCall Girls In Nangloi Rly Metro ꧂…….95996 … 13876 Enjoy ꧂Escort
Call Girls In Nangloi Rly Metro ꧂…….95996 … 13876 Enjoy ꧂Escort
dlhescort
 
Call Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
Call Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service BangaloreCall Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
Call Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
amitlee9823
 
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
amitlee9823
 
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
amitlee9823
 

Kürzlich hochgeladen (20)

👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
 
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
Call Girls From Pari Chowk Greater Noida ❤️8448577510 ⊹Best Escorts Service I...
 
Value Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and painsValue Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and pains
 
Falcon Invoice Discounting platform in india
Falcon Invoice Discounting platform in indiaFalcon Invoice Discounting platform in india
Falcon Invoice Discounting platform in india
 
Marel Q1 2024 Investor Presentation from May 8, 2024
Marel Q1 2024 Investor Presentation from May 8, 2024Marel Q1 2024 Investor Presentation from May 8, 2024
Marel Q1 2024 Investor Presentation from May 8, 2024
 
Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...
Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...
Unveiling Falcon Invoice Discounting: Leading the Way as India's Premier Bill...
 
Chandigarh Escorts Service 📞8868886958📞 Just📲 Call Nihal Chandigarh Call Girl...
Chandigarh Escorts Service 📞8868886958📞 Just📲 Call Nihal Chandigarh Call Girl...Chandigarh Escorts Service 📞8868886958📞 Just📲 Call Nihal Chandigarh Call Girl...
Chandigarh Escorts Service 📞8868886958📞 Just📲 Call Nihal Chandigarh Call Girl...
 
BAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
BAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRLBAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
BAGALUR CALL GIRL IN 98274*61493 ❤CALL GIRLS IN ESCORT SERVICE❤CALL GIRL
 
Falcon Invoice Discounting: Unlock Your Business Potential
Falcon Invoice Discounting: Unlock Your Business PotentialFalcon Invoice Discounting: Unlock Your Business Potential
Falcon Invoice Discounting: Unlock Your Business Potential
 
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
 
Business Model Canvas (BMC)- A new venture concept
Business Model Canvas (BMC)- A new venture conceptBusiness Model Canvas (BMC)- A new venture concept
Business Model Canvas (BMC)- A new venture concept
 
Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876
Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876
Cheap Rate Call Girls In Noida Sector 62 Metro 959961乂3876
 
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
Call Girls Kengeri Satellite Town Just Call 👗 7737669865 👗 Top Class Call Gir...
 
Al Mizhar Dubai Escorts +971561403006 Escorts Service In Al Mizhar
Al Mizhar Dubai Escorts +971561403006 Escorts Service In Al MizharAl Mizhar Dubai Escorts +971561403006 Escorts Service In Al Mizhar
Al Mizhar Dubai Escorts +971561403006 Escorts Service In Al Mizhar
 
Uneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration PresentationUneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration Presentation
 
Call Girls In Nangloi Rly Metro ꧂…….95996 … 13876 Enjoy ꧂Escort
Call Girls In Nangloi Rly Metro ꧂…….95996 … 13876 Enjoy ꧂EscortCall Girls In Nangloi Rly Metro ꧂…….95996 … 13876 Enjoy ꧂Escort
Call Girls In Nangloi Rly Metro ꧂…….95996 … 13876 Enjoy ꧂Escort
 
Call Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
Call Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service BangaloreCall Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
Call Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
 
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
Call Girls Jp Nagar Just Call 👗 7737669865 👗 Top Class Call Girl Service Bang...
 
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
 
Call Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service Available
Call Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service AvailableCall Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service Available
Call Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service Available
 

Getting startedwithdmarc5

  • 1. Getting Started With DMARC page 1 | Share this: Getting Started With DMARC
  • 2. Table Of Contents Part 1: Getting to Know DMARC Page 3 Part 2: History of DMARC Page 6 Part 3: How DMARC Works Page 8 Part 4: Getting Started with DMARC Page 10 Part 5: What Next? Page 12 Contact Page 13
  • 3. What is DMARC? DMARC stands for Domain-based Message Authentication, Reporting and Conformance. It lets email senders apply a policy to their sending domains that instructs mailbox providers on what to do if their email authentication (SPF and DKIM) fails — such as quarantine the message to the junk folder or reject the email outright from being delivered to the inbox holder, which is joint customer of both the sender and mailbox provider). It also provides senders with information about their sending infrastructure to help improve overall email governance and adherence to best practices. Getting Started With DMARC page 3 | Share this: domain threats, those attacks that are leveraging a domain you own and control, like phishing, loss to both consumers and brands but also indirect costs associated with the loss of consumer trust and erosion of brand equity and reputation. Mailbox providers including Gmail, Yahoo!, AOL Brands need to arm themselves with information and tools to protect their valuable customers information to protect brands and consumers from direct-domain threats. DMARC Helps Senders and Mailbox Providers By using DMARC, senders: 1. Protect themselves and their customers from direct-domain threats. 2. Get valuable feedback about emails that don’t pass authentication. 3. Can instruct mailbox providers on how they should handle messages that fail authentication. By using DMARC, mailbox providers: 1. Can better identify legitimate mailers from spammers. 2. bad emails instead of good ones. 3. Help protect their mailbox holders. Part 1: Getting to Know DMARC
  • 4. DMARC Matters for Your Email Program Email is a powerful channel for generating revenue and building strong relationships with customers. Any company that relies on email to make money needs to ensure their program and customers are protected. This means taking proactive steps to block fraudulent and mailicious messages from reaching customers. Getting Started With DMARC page 4 | Share this: It is not a matter of if, but when cybercriminals will spoof your brand. DMARC provides a mechanism to help block phishing attacks on your valuable customers, which improves their overall experience with your brand. I’m a Marketer… Shouldn’t the Security Team Worry About DMARC? Phishing is a companywide responsibility. Both marketing and security teams need to care about DMARC as both teams have a vested interest. Marketers spend a lot of time and effort and resources in promoting brand awareness and email engagement. A phishing attack could destroy that in a matter of minutes. Security teams focus on protecting company assets. And the brands’ customer base is likely the largest asset the company has. Security teams need to partner with Marketing colleagues to protect valuable customers and the revenue generated through the email channel. Email brand protection is a joint imperative and both Marketing and Security teams have a shared interest in protecting the brand and customers from malicious email traffic.
  • 5. 80 thousand 60% Getting Started With DMARC page 5 | Share this: DMARC Stats 100 million + Mailbox providers rejected hundreds of millions of messages each year because they failed the DMARC authentication check Over 80,000 domains have deployed domain-wide policies via the DMARC standard 60% of the top sending domains publishing policy come from companies DMARC.org DMARC protects almost two-thirds of the world’s consumer mailboxes and 80% of typical US customers– assuming both the sender and mailbox provider are implementing DMARC
  • 6. How DMARC Got Started Problems with SPF and DKIM Since 2004, industry and Internet standards groups, senders, mailbox providers, and vendors (such as Return Path) have been working on establishing email authentication standards to prevent email fraud. Getting Started With DMARC page 6 | Share this: Adoption of these authentication standards, including SPF and DKIM, became widespread across the industry, dramatically reducing spammers’ ability to impersonate domains consumers trust. Even so, this industry consortium noticed a problem with the authentication process: the problem of what to do with unauthenticated mail. Private Communications Before DMARC was established, senders and receivers privately communicated what to do when authentication failed. In 2007, PayPal worked privately with Yahoo and Gmail -- telling them what to do with PayPal’s unauthenticated email. The results of this partnership were great: PayPal experienced a significant decrease in suspected fraudulent email. Though these private efforts were successful, they required a lot of manual coordination. The group streamlined the process and created a public standard to let everyone give directives to mailbox providers about what to do with unauthenticated mail. This standard became DMARC. Where DMARC Is Today Today, many of these same parties form an unincorporated working group at DMARC.org. The group is dedicated to developing Internet standards to reduce the threat of email phishing and improve coordination between mailbox providers and email senders. Part 2: History of DMARC
  • 7. Getting Started With DMARC page 7 | Share this: How DMARC Solved Problems for SPF and DKIM Though SPF and DKIM helped reduce fraud, they did not turn out to be the silver bullet for phishing. Lack of standard use and enforcement by ISPs and the high risk of blocking legitimate email stalled progress. Problems with SPF and DKIM SPF works by publishing a record authorizing the IP addresses allowed to send on behalf of a domain. SPF does not survive email forwarding, so it can be easily broken. DKIM attempted to resolve this problem by cryptographically signing an email. Though DKIM survives forwarding and is difficult to forge, it is expensive and difficult to adopt due to the computational overhead, complexity, configuration errors, and more. DMARC to the Rescue DMARC resolves most of these issues by not only using both SPF and DKIM, but by providing reports on authentication failures and giving policy control to the sender on how to handle failures by doing nothing, quarantining the failure, or blocking it. As a result, SPF, DKIM and DMARC greatly reduce the false positive issue.
  • 8. Getting Started With DMARC page 8 | Share this: DMARC lets senders indicate within their DNS record that their email is protected by SPF and/or DKIM -- and tells mailbox providers what to do if that authentication fails. DMARC doesn’t directly address whether or not an email is fraudulent. Instead, messages are considered aligned if the RFC 5322 DMARC record conforms to the domain In SPF’s case, the MFROM domain has to exactly match the organizational domain of the RFC5322 From domain. In DKIM’s case, the organizational domain of the d= value in the DKIM signature has to match the RFC5322 From domain. Only one the email to be considered in alignment. Relaxed vs. Strict Alignment Senders can specify a strict or relaxed alignment; relaxed alignment is the default. Relaxed alignment allows for partial matches between SPF and/or DKIM record(s) and the RFC 5322. For instance, subdomains of a given domain can be considered aligned. An example of relaxed alignment is: facebook.com and groups.facebook.com. Strict alignment requires exact matches. An example of strict alignment is: facebook.com and facebook.com. Part 3: How DMARC Works Why Does DMARC check the RFC5322 From Domain? The RFC5322 From domain (1) is highly visible (2) is the domain email users come into contact with most easily, (3) is one of the most-forged parts of the email body, (4) is the only one that is guaranteed to be present, and (5) is displayed by MUAs in a way that strongly suggests it is the true originator of the message. NOTE: An organizational domain is the brand or registered domain. For example, facebook.com is an organizational domain while groups.facebook.com is a sub-domain.
  • 9. Who Uses Relaxed or Strict Alignment Relaxed alignment can be useful for senders who contract the handling of certain mail streams (such as bounce processing) to third-parties. These senders can both use third-parties and deploy DMARC without having any negative impact. Generally, financial institutions or other high-profile organizations may be most interested in strict alignment. Getting Started With DMARC page 9 | Share this: Reporting With DMARC, senders can receive reports that include data about authentication issues they are having with their email streams. This reporting feedback loop makes the email ecosystem a safer place by allowing senders and receivers to communicate automatically about potential abuse. Senders can choose to receive two types of reporting: aggregate and/or message-level (forensic). The reports include information to give senders insight into their authentication results so they can take action on any needed corrections, and calibrate an appropriate DMARC policy. Receivers will send aggregate reports for all emails. Receivers who support forensic reporting will send forensic reports only if either SPF or DKIM do not pass. These reports can be difficult to understand and an in-house solution to parse the data must be built or there are third-party solutions like Return Path that display the DMARC reporting data in an easy-to-use portal so that efforts can be focused on policy enforcement and correcting authentication issues.
  • 10. Getting Started With DMARC page 10 | Share this: Before you start blocking suspected fraudulent messages, you need to gain visibility in to all of your company’s outbound mail streams. Conduct an audit to ensure that all IPs, domains, and sending environments are accounted for and are properly being authenticated. Aggregate and Forensic Reports Mailbox providers send both types of ruf:mailto= or rua:mailto= tags). 3 sections: Information about the mailbox provider that sent the report A description of your DMARC Record A summary of authentication results. Look for the areas that show neutral, none, or failed results. Forensic report are sent in AFRF or IODEF in the “rf” tag. By default, it’s AFRF. You’ll get per-message reports on individual messages that fail SPF and/or DKIM. Make sure you don’t click on any links. Use the email headers to help your investigation. Congratulations, you are about to join the elite group of top senders that have already published a DMARC policy. Follow the steps below to get started! 2 Open the email headers from the emails you send. Identify the following: • Return Path/MFrom/Envelope From domain • Friendly From domain • DKIM-Signature (look for the “d=” tag) Make sure the domains are aligned Part 4: Getting Started with DMARC 1 Identify and Authenticate Verify Alignment 3 Learn the DMARC tags There are numerous DMARC tags available, but you don’t have to use them all. Focus on the v, p, rua, and ruf tags. 4 Create an Entry Create an entry in DNS for the zone “v=DMARC1; p=none; rua=mailto:report@ example.com”
  • 11. Getting Started With DMARC page 11 | Share this: 5 Set Policy to p=”none” Quarantine Though you can specify three types of policy: reject, quarantine, or none, set the mailbox providers not to take action if the DMARC check fails -- allowing you to work out any kinks with your records. Start collecting reports to see if anyone is to receive the daily aggregate reports using the rua tag from the mailbox providers by specifying your email address. Request aggregate reports in the beginning, (ruf ) challenging to fully understand due to the magnitude of data that is included. Senders can quickly get inundated with the DMARC reports. Return Path’s email brand protection solutions can help with both issues though data collection and reporting that can help you make sense of it. Go here for more information. that all of your outbound mail streams are authenticating properly, take the next step and set the DMARC DNS record ‘p=’ tag to “quarantine.” An example record is: “v=DMARC1; p=quarantine; rua=mailto:dmarc_agg@auth.returnpath.net; ruf=mailto:dmarc_afrf@auth.returnpath.net” During this time, diligently check your reports within the Domain Secure solution user interface. errors, set the DMARC DNS record ‘p=’ tag to “reject.” An example DMARC record is: “v=DMARC1; p=reject; rua=mailto:dmarc_agg@auth.returnpath.net; ruf=mailto:dmarc_afrf@auth.returnpath.net” Place your domains on Return Path’s Registry. This instructs the mailbox providers to block suspected fraudulent messages. 6 Monitor 7 8 Block
  • 12. Getting Started With DMARC page 12 | Share this: Part 5: What Next? Use Return Path to Analyze DMARC Though DMARC is a public standard, Return Path’s email brand protection solutions show the results of DMARC reporting in a format that is easy to read and understand so that you can focus on making important policy decisions on a domain by domain basis. The solution also analyzes and extracts data to identify trends, phishing outbreaks, authentication failures, and authentication failure resolutions. Enhance DMARC Data with Private Data Return Path receives more email data from major ISPs than anyone else in the world. Return Path email brand protection customers get access to this data, which provides the greatest visibility and insight available into email brand abuse. Use the Return Path Registry DMARC is not the only mechanism through which policy can be asserted. With either the Domain Protect or Domain Secure solution, clients can also choose to place their domains on Return Path’s Registry. Path publishes to mailbox providers in our private channel. The Registry allows Return Path clients to specify what they would like mailbox providers to do with their unauthenticated mail. Protect your brand and your customers from email brand abuse Do your part in the war against phishing and brand abuse by educating yourself on the full-spectrum of threats, the capabilities and limitations of DMARC, authenticating your outbound mail using SPF and DKIM, and working collaboratively with your marketing and security teams to implement DMARC as customers. Sources: http://googleonlinesecurity.blogspot.com/2013/12/internet-wide-efforts- to-fight-email.html http://www.returnpath.com/solution-content/dmarc-support/ http://www.techsneeze.com/how-parse-dmarc-reports https://github.com/linkedin/dmarc-msys/ https://github.com/thinkingserious/sendgrid-python-dmarc-parser http://www.trusteddomain.org/opendmarc/ http://landing.returnpath.com/dmarc
  • 13. About Return Path Return Path is the worldwide leader in email intelligence. We analyze more data about email than anyone else in the world and use that data to power products that ensure that only emails people want and expect reach the inbox. Our industry-leading email intelligence solutions utilize the world’s most comprehensive set of data to maximize the performance and accountability of email, build trust across the entire email ecosystem and protect users from spam and other abuse. We help businesses build better relationships with their customers and improve their email ROI; and we help ISPs and other mailbox providers enhance network performance and drive customer retention. Information about Return Path can be found at: returnpath.com USA (Corporate Headquarters) rpinfo@returnpath.com Australia rpinfo-australia@returnpath.com United Kingdom rpinfo-uk@returnpath.com Brazil rpinfo-brazil@returnpath.com Canada rpinfo-canada@returnpath.com Germany rpinfo-germany@returnpath.com France rpinfo-france@returnpath.com