DMARC360 Blog

  • What is received in the DMARC Aggregate Reports

    31 October 2021
    The DMARC framework allows a domain owner to specify the email address on which to receive their DMARC aggregate reports. These reports are in an XML format, sent by the email recipients every 24 hours and include useful information about the verification results of SPF and DKIM. Following is the...
  • DMARC Record for Subdomains

    31 October 2021
    DMARC records can be implemented separately on subdomains, however this can get a little complicated. For an email sent from, the DMARC record on the subdomain will take precedence over the Top Level Domains’ ( DMARC record. However, for an email...
  • Does SPF Qualifier matter if DMARC is implemented

    08 September 2021
    Short answer: No, it does not matter. Long answer: Historically, the SPF authentication used to be the criteria to apply actions on the emails received. Several years later when the adoption of DMARC emerged, the SPF qualifier action was overridden by the DMARC policy. However, this is dependent on...
  • DMARC Compliance of Auto-Generated Emails

    14 January 2021
    Auto-Generated emails, also known as the Automatic Responses, are emails that are generated and sent from your email server. Some of the most common types are: Out of the office, or vacation notices. Change of address. Service Responders NDR (Non-Delivery Receipt) responses. According to the RFC2298,...
  • Misconceptions of DMARC

    29 November 2020
     1) DMARC is an enhanced spam filter  DMARC is a relatively new framework first published in early 2012, with its primary purpose being to protect you from being impersonated over email communication. This gives a new paradigm to 'email security' where, unlike most people's perception, this secures your...
  • How do SPF, DKIM, and DMARC work together?

    01 November 2020
    DMARC is an anti-spoofing Framework that relies on two other email authentication mechanisms, SPF and DKIM. DMARC compliance requires at least one of these mechanisms to pass.   Deployment of DMARC, SPF & DKIM requirements: Access to your public DNS Email gateway outbound DKIM signing option Email...
  • Best Practices on email security/ email protection

    19 October 2020
    The email gateway is the primary communication channel through the cloud between organizations; therefore, it plays an essential role in every business. Scammers may exploit this critical aspect by utilizing phishing emails to compromise your organization’s email infrastructure. Hence, choosing...
  • What are the benefits of DMARC?

    05 October 2020
      The DMARC framework was introduced to secure your outbound emails and from receiving fraudulent impersonated emails by authorizing your legitimate sending sources. This protects your organization from BEC fraud and from receiving malicious spoofed emails.  The implementation of this framework is the...
  • DMARC in 2020

    23 September 2020
    DMARC is a relatively new framework first published in early 2012, with its primary purpose being to protect you from being impersonated over email communication. This gives a new paradigm to 'email security' where, unlike most people's perception, this secures your outbound emails by authorizing...
  • What is DMARC Alignment

    14 September 2020
    When implementing DMARC, you will hear the phrase ‘DMARC Identifier Alignment’ a lot, but what exactly does it mean?  It is the relation between the return path domain and the FROM HEADER of an email. Since SPF and DKIM authenticate only the return path domain and ignore the FROM HEADER, DMARC...
  • BEC Fraud & DMARC

    24 August 2020
    BEC (Business Email Compromise) is a targeted email fraud with a potentially high financial assurance. Last year, as per the IC3 Report, Cybercrime led to $3.5 billion losses in the US alone, with BEC fraud accounting for almost half of that. This year has also seen a surge in this particular type of...
  • What does a DMARC record look like and how do I generate it?

    11 August 2020
    DMARC record is a DNS txt record published in your public DNS. The DMARC version tag defines that this is a DMARC record. When the receiver queries your public DNS, they will be able to identify this as your DMARC record. The policy tag is the DMARC policy you set on your emails that fail SPF and...
  • How to setup DMARC in 3 easy steps

    15 July 2020
    Identify your domains  The first step is identifying all domains that are owned by your organization. The DMARC framework can be deployed on all your domains, even if they are dormant and not used for anything. Those domains still belong to you and can be impersonated by an attacker infringing upon your...
  • What are DMARC Reports

    30 June 2020
    DMARC (Domain-based Message Authentication, Reporting, and Conformance) implementation is highly dependent on its reporting mechanism. By analyzing DMARC reports, you can deploy this framework to its full maturity on your domains. There are 2 different types of DMARC reports, aggregate report, and...
  • What is DMARC?

    15 June 2020
    DMARC or Domain-based Message Authentication Reporting and Conformance is a framework designed for 2 things: Allow the email sender to tell the receiver what to do in case of a forged email. Allow the email receiver to send back reports on the authentication checks, and the action it applied on...
  • What is SPF?

    12 June 2020
    SPF, the Sender Policy Framework, was the first protocol designed for an email sender to authorize their messages. The Problem: SMTP, Simple Mail Transfer Protocol, emphasized on reliability instead of security. This protocol is used for email communication over the internet with no way to verify where...
  • What is DKIM ?

    10 June 2020
    DKIM, Domain Keys Identified Mail, was put together to enable digital signatures on emails verifying their integrity. The Problem: Even though SPF record authorizes IP Addresses to send email on behalf of a domain, an IP Address can be spoofed, which allows forged emails to pass the SPF check...
  • SPF/DMARC Record for Inactive Domains

    07 June 2020
    The DMARC framework is not only designed for domains that are actively being used for email exchange, but it is recommended to be used for every domain you own. For inactive non-email sending domains, it is a recommended best practice to have an SPF and DMARC record on a strict policy. This may...