{"id":2171,"date":"2022-01-24T12:32:40","date_gmt":"2022-01-24T12:32:40","guid":{"rendered":"https:\/\/kdmarc.com\/blog\/?p=2171"},"modified":"2025-05-21T18:37:11","modified_gmt":"2025-05-21T13:07:11","slug":"what-is-dmarc","status":"publish","type":"post","link":"https:\/\/threatcop.com\/blog\/what-is-dmarc\/","title":{"rendered":"What is DMARC and How Does It Work?"},"content":{"rendered":"<blockquote>\n<p style=\"text-align: justify;\"><span style=\"color: #000000;\"><strong>According to Global DMARC Adoption Report of 2019, 79.7% of the companies have left their consumer data vulnerable by not implementing email domain security protocols.<\/strong><\/span><\/p>\n<p><span style=\"color: #000000;\"><strong>(Source: <i>Business Wire<\/i>)<\/strong><\/span><\/p>\n<\/blockquote>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400; color: #000000;\">Email is one of the most standard and official forms of communication for exchanging messages everywhere in the world. But have you ever wondered whether the emails you receive always come from authentic sources?\u00a0<\/span><\/p><div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 ez-toc-wrap-center counter-hierarchy ez-toc-counter ez-toc-light-blue ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #414141;color:#414141\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #414141;color:#414141\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#What_is_DMARC\" >What is DMARC?<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#Book_a_Free_Demo_Call_with_Our_People_Security_Expert\" >Book a Free Demo Call with Our People Security Expert<\/a><ul class='ez-toc-list-level-4' ><li class='ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#Enter_your_details\" >Enter your details<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#Why_DMARC_is_Important\" >Why DMARC is Important?<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#What_is_the_Purpose_of_DMARC\" >What is the Purpose of DMARC?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#What_is_a_DMARC_Record\" >What is a DMARC Record?<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#What_is_the_Importance_of_the_DMARC_Record\" >What is the Importance of the DMARC Record?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#Example_of_DMARC_Record\" >Example of DMARC Record<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#What_are_DMARC_Policies\" >What are DMARC Policies?<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#None_Policy\" >None Policy&nbsp;<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#Quarantine_Policy\" >Quarantine Policy&nbsp;<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-12\" href=\"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#Reject_Policy\" >Reject Policy&nbsp;<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-13\" href=\"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#How_does_DMARC_Work\" >How does DMARC Work?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-14\" href=\"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#Email_Authentication_Standards\" >Email Authentication Standards<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-15\" href=\"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#Statistics_on_Email_Attacks_and_DMARC\" >Statistics on Email Attacks and DMARC<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-16\" href=\"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#TDMARC_is_the_Solution\" >TDMARC is the Solution<\/a><\/li><\/ul><\/li><\/ul><\/nav><\/div>\n\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400; color: #000000;\">Suppose you get an email from your Finance Department asking for a transaction or sensitive information about your account. How can you be sure that this email came from a credible source?\u00a0<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">Email security is a matter of concern for every organization today. In fact, according to IC3, there were <\/span><b>19,369 BEC (Business Email Compromise) complaints in 2020<\/b><span style=\"font-weight: 400;\"> that <\/span><b>incurred a loss of over $1.8 billion<\/b> <b>to organizations<\/b><span style=\"font-weight: 400;\">. <\/span><\/span><\/p>\n\n<style type=\"text\/css\">\n      @media print, screen and (max-width: 63.99875em){\n      .tnp-submit\n      width: 48%;\n      }\n      .wp-block-tnp-minimal{\n      padding: 20px;\n      }\n      .blog_para\n      margin-top: 4px !important;\n      line-height: 25px !important;\n      font-size: 15px !important;\n      }\n\n      }\n      .blog_para{\n      font-family: jost,sans-serif;\n      margin-top: 14px;\n      margin-bottom: 30px;\n      color: #fff;\n      font-size: 15px !important;\n      color: black !important;\n\n      }\n\n      .wp-block-tnp-minimal{\n      padding:20px;\n      border: 1px solid grey;\n      }\n\n      .tnp-submit a{\n        background: #1d58c7!important;\n    border-radius: 5px!important;\n    text-transform: inherit!important;\n    padding: 8px 25px!important;\n    font-weight: 600!important;\n    color: #fff!important;\n    width: 30%!important;\n    border: none;\n      }\n\n      .blog_get{\n      font-size: 24px !important;\n      font-weight: 700;\n      padding-bottom: 0px;\n    font-family: 'Poppins' !important;\n      margin-bottom: 0px;\n      margin-top: 0px;\n      margin-bottom: 0px !important;\n      color: white;\n          line-height: 30px;\n          color: white;\n      }\n      .row{\n             display: flex;\n    flex-wrap: wrap;\n    flex-direction: row;\n    padding: 25px 0px 25px 36px;\n    align-items: center;\n\n      }\n\n.colLeft{\n         flex-basis:50%;\n    -webkit-box-flex: 0;\n    flex-grow: 0;\n    max-width: 50%;\n    color: white;\n}\n    \n .colRight{\n       flex-basis: 45%;\n    -webkit-box-flex: 0;\n    flex-grow: 0;\n    max-width: 50%;\n }\n\n.tnp-subscription-minimal{\n    float: right;\n}\n<\/style>\n<div style=\"max-width: 741px; margin: 0 auto; background-image: url('https:\/\/awareness.threatcop.ai\/marketing\/linkedinlowerbanner.webp'); background-repeat: no-repeat; background-size: cover; background-position: center; \">\n<div class=\"row\">\n<div class=\"colLeft\">\n<p class=\"blog_get\" style=\"font-family: 'Poppins' !important; color: white !important\">Subscribe to Our Newsletter On Linkedin<\/p>\n<p class=\"blog_para\" style=\"font-size: 16px;font-family: 'Poppins' !important; color: white !important; margin-top: 10px; margin-bottom: 28px;line-height: 25px;\">Sign up to Stay Tuned with the Latest Cyber Security News and Updates<\/p>\n\n<div>\n<div class=\"tnp\" style=\"margin-bottom: 10px;\">\n            <form action=\"https:\/\/threatcop.com\/newsletter-thank-you\" method=\"get\" target=\"_blank\">\n<div class=\"tnp-submit\">\n                  <a class=\"libutton\" href=\"https:\/\/www.linkedin.com\/build-relation\/newsletter-follow?entityUrn=7062043746430783488\" target=\"_blank\" rel=\"noopener\">Subscribe<\/a><\/div>\n<\/form><\/div>\n<\/div>\n<\/div>\n<div class=\"colRight\">\n<div>\n<div class=\"tnp tnp-subscription-minimal \">\n            <img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/marketing\/newsletter-icon.webp\" class=\"img-fluid\"><\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">Back in 2012, big organizations like Google, Microsoft, Paypal, and Yahoo developed a protocol to place alongside SMTP (Simple Mail Transfer Protocol) for email authentication. This protocol is known as <\/span><b>DMARC<\/b> <b>(Domain-based Message Authentication, Reporting, and Conformance)<\/b><span style=\"font-weight: 400;\">.<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">But as per an article published by Tech Crunch in 2018, <\/span><b>only half of the Fortune 500 deployed DMARC for email security. <\/b><span style=\"font-weight: 400;\">Moreover, according to the article CIO insight in 2021, 67% of Fortune 500 companies don&#8217;t have a DMARC implemented in their corporate domain!<\/span><\/span><\/p>\n\n\n<div class=\"wp-block-image wp-image-9538 size-full\">\n<figure class=\"aligncenter\"><img loading=\"lazy\" decoding=\"async\" width=\"4801\" height=\"2481\" src=\"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/01\/Losses-by-Email-Attacks.jpg\" alt=\"Losses by Email Attacks\" class=\"wp-image-9538\"\/><figcaption class=\"wp-element-caption\"><span style=\"color: #000000;\">Source: (Helpnet Security)<\/span><\/figcaption><\/figure>\n<\/div>\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">So what is this DMARC and how can it save organizations from billions of losses?<\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"What_is_DMARC\"><\/span><span style=\"color: #000000;\"><strong>What is DMARC?<\/strong><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">DMARC is an effective <\/span><b>email validation protocol<\/b><span style=\"font-weight: 400;\"> that protects your organization\u2019s email domain from email-based attacks. Threat actors can carry out malicious activities like email spoofing and phishing scams.<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">In common terms, it provides domain owners with insights into who is sending emails from their domain, giving them detailed information about their outbound email channel. This email authentication protocol offers the framework to ensure that your customers or clients will only receive emails sent by authorized sources. This protocol improves the delivery rate and enhances domain reputation.&nbsp;<\/span><\/p>\n\n\n\n<!DOCTYPE html>\r\n<html lang=\"en\">\r\n\r\n<head>\r\n    <meta charset=\"UTF-8\">\r\n    <meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\r\n    <meta name=\"viewport\" content=\"width=device-width, initial-scale=1.0\">\r\n    <title>Document<\/title>\r\n<\/head>\r\n\r\n<style>\r\n    .interestedBtn {\r\n        width: 80% !important;\r\n        box-sizing: border-box !important;\r\n        display: inline-block !important;\r\n        padding: 11px !important;\r\n        border: 1px !important;\r\n        border-color: #ddd !important;\r\n        margin-top: 10px !important;\r\n        background-color: #183e8b !important;\r\n        background-image: none !important;\r\n        text-shadow: none !important;\r\n        color: #fff !important;\r\n        font-size: 14px !important;\r\n        line-height: 20px !important;\r\n        border-radius: 5px !important;\r\n        margin: 0 !important;\r\n        cursor: pointer !important;\r\n        box-shadow: 0px 4.66px 22.99px 0px rgba(0, 0, 0, 0.10);;\r\n    }\r\n\r\n\r\n        .formSec .formSecTwo{\r\n            padding-top: 15px !important;\r\n            margin-bottom: 30px !important;\r\n        }\r\n\r\n\r\n    .tnp-email {\r\n        width: 80% !important;\r\n        box-sizing: border-box;\r\n        padding: 8px 10px;\r\n        display: inline-block;\r\n        border: 1px solid #ced4da;\r\n        background: #fff;\r\n        color: #000 !important;\r\n        font-size: 13px;\r\n        line-height: 20px;\r\n        border-radius: 2px;\r\n        padding-right: 30px;\r\n        margin-bottom: 0px;\r\n    }\r\n\r\n    .formSec {\r\n        border: 1px solid #ced4da;\r\n        float: left !important;\r\n        width: 55% !important;\r\n    }\r\n\r\n    .mainBox {\r\n       \/* border: 1px solid #183e8b;*\/\r\n         background: white;\r\n        max-width: 600px !important;\r\n        margin: 0 auto !important;\r\n        padding: 20px !important;\r\n        font-family: Arial, Helvetica, sans-serif !important;\r\n    }\r\n\r\n    .boxDiv {\r\n        display: flex !important;\r\n    }\r\n\r\n    .boxConsult {\r\n        float: left !important;\r\n        width: 45% !important;\r\n        padding: 10px !important;\r\n    }\r\n\r\n    .formSecTwo {\r\n        text-align:center !important;\r\n        width: 100% !important;\r\n    }\r\n\r\n    .formHeading {\r\n        font-family: Arial, Helvetica, sans-serif;\r\n        margin-top: 0px;\r\n        font-weight: 700;\r\n        line-height: 25px;\r\n        font-size: 18px !important;\r\n        \r\n       margin-bottom: 60px !important;\r\n       color: #000!important;\r\n          margin-top: 5px !important;\r\n    }\r\n\r\n    .fieldHeading {\r\n        margin: 0 !important;\r\n        font-size: 13px !important;\r\n        text-align: left !important;\r\n        margin: 0px 39px 2px 93px !important;\r\n        font-weight: 500 !important;\r\n    }\r\n\r\n    .image {\r\n        max-width:90% !important;\r\n        height: auto !important;\r\n    }\r\n\r\n     .email-icon {\r\n            position: absolute;\r\n            right: 50px;\r\n             top: 20px;\r\n            transform: translateY(-50%);\r\n            pointer-events: none; \r\n        }\r\n\r\n          .email-container{\r\n             position: relative;\r\n         \r\n        }\r\n       \r\n\r\n        .email-icon img{\r\n                 width: 15px;\r\n        }\r\n\r\n\r\n         input::placeholder {\r\n            color:#495057;\r\n        }\r\n\r\n\r\n     ::placeholder {\r\n        color: #495057;\r\n    }\r\n\r\n        ::-ms-input-placeholder { \r\n          color:#495057;\r\n        }\r\n\r\n\r\n        input:-webkit-autofill {\r\n            background-color: transparent !important;\r\n            -webkit-box-shadow: 0 0 0px 1000px white inset !important; \r\n            box-shadow: 0 0 0px 1000px white inset !important;\r\n            color: #495057 !important; \r\n        }\r\n\r\n        \r\n        input {\r\n            color:#495057 !important;\r\n        }\r\n\r\n     .tnp-subscription-minimal {\r\n       float: unset;\r\n      }\r\n\r\n\r\n    @media screen and (max-width: 480px) {\r\n        .boxDiv {\r\n            display: block !important;\r\n            padding: 15px !important;\r\n         \r\n        }\r\n\r\n        .image{\r\n        width: 80% !important;\r\n         margin-bottom: 14px;\r\n        }\r\n        .fieldHeading {\r\n            text-align: left !important;\r\n            margin: unset !important;\r\n        }\r\n\r\n        .boxConsult {\r\n            width: unset !important;\r\n            float: none !important;\r\n        }\r\n\r\n        .mainBox {\r\n            border: unset !important;\r\n        }\r\n\r\n        .formSec {\r\n            float: unset !important;\r\n            width: 100% !important;\r\n        }\r\n\r\n        .formSecTwo {\r\n            text-align: center !important;\r\n        }\r\n\r\n        .tnp-email {\r\n            width: 90% !important;\r\n        }\r\n\r\n        .formHeading {\r\n            margin-bottom: unset !important;\r\n        }\r\n\r\n         .email-icon {\r\n            position: absolute;\r\n            right: 25px;\r\n            top: 58%;\r\n            transform: translateY(-50%);\r\n            pointer-events: none; \/* Make sure the icon doesn't block clicking on the input *\/\r\n        }\r\n       \r\n        .email-container{\r\n             position: relative;\r\n        }\r\n\r\n    }\r\n<\/style>\r\n\r\n<body>\r\n\r\n    <div class=\"mainBox\" box-sizing:=\"\" border-box;=\"\">\r\n\r\n        <div class=\"boxDiv\">\r\n\r\n            <div class=\"boxConsult\">\r\n                <div>\r\n                    <h3 class=\"formHeading\" style=\" font-size: 16px !important;\"><span class=\"ez-toc-section\" id=\"Book_a_Free_Demo_Call_with_Our_People_Security_Expert\"><\/span>\r\n                        Book a Free Demo Call with Our People Security Expert<span class=\"ez-toc-section-end\"><\/span><\/h3>\r\n                <\/div>\r\n                <img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/form.svg\" class=\"image\">\r\n            <\/div>\r\n\r\n            <div class=\"formSec\">\r\n                <div class=\" formSecTwo\">\r\n                    <h4 style=\"margin-top: 0; font-size: 16px !important;\"><span class=\"ez-toc-section\" id=\"Enter_your_details\"><\/span>Enter your details<span class=\"ez-toc-section-end\"><\/span><\/h4>\r\n                    <div class=\"tnp tnp-subscription-minimal\">\r\n                        <form action=\"https:\/\/threatcop.com\/thankyou-blog\" method=\"get\" target=\"_blank\">\r\n                            <div class=\"email-container\" style=\"margin-bottom:20px;\">\r\n\r\n                                <input class=\"tnp-email\" type=\"text\" required=\"\" name=\"FullName\" value=\"\"\r\n                                    placeholder=\"Full Name\">\r\n                                    <span class=\"email-icon\"><img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/icon01.svg\" class=\"img-fluid\" \/><\/span>\r\n                            <\/div>\r\n\r\n                            <div class=\"email-container\" style=\"margin-bottom:20px;\">\r\n                               \r\n                                <input class=\"tnp-email\" type=\"email\" required=\"\" name=\"email\" value=\"\"\r\n                                    placeholder=\"Corporate Email Id\">\r\n                                     <span class=\"email-icon\"><img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/icon02.svg\" class=\"img-fluid\" \/><\/span>\r\n                            <\/div>\r\n\r\n                            <div class=\"email-container\" style=\"margin-bottom:20px;\">\r\n                               \r\n                                <input class=\"tnp-email\" type=\"text\" required=\"\" name=\"CompanyName\" value=\"\"\r\n                                    placeholder=\"Company Name\">\r\n                                    <span class=\"email-icon\"><img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/icon03.svg\" class=\"img-fluid\" \/><\/span>\r\n\r\n                            <\/div>\r\n\r\n                            <div class=\"email-container\">\r\n                               \r\n                                <input class=\"tnp-email\" type=\"number\" required=\"\" name=\"Phone\" value=\"\"\r\n                                    placeholder=\"Phone No.\"><br>\r\n                                    <span class=\"email-icon\"><img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/icon04.svg\" class=\"img-fluid\" \/><\/span>\r\n                            <\/div>\r\n                            <input type=\"hidden\" name=\"BlogForm\" value=\"BlogForm\"><br>\r\n                            <input class=\"tnp-submit interestedBtn\" name=\"submit\" type=\"submit\"\r\n                                value=\"SUBMIT\">\r\n\r\n                        <\/form>\r\n                    <\/div>\r\n                <\/div>\r\n            <\/div>\r\n\r\n        <\/div>\r\n    <\/div>\r\n\r\n<\/body>\r\n\r\n<\/html>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">It is an <\/span><b>email authentication standard<\/b><span style=\"font-weight: 400;\"> that secures senders and receivers from email-based attacks like spamming, email domain spoofing, etc. It is also <\/span><b>used to reduce and prevent attacks<\/b><span style=\"font-weight: 400;\"> like BEC (Business Email Compromise) attacks, phishing, etc.&nbsp;<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">This protocol is implemented on a technical level, which allows an organization to authenticate its emails by setting either of the three main policies:<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"font-weight: 400; color: #000000;\">None<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Quarantine<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Reject<\/span><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><b><span style=\"color: #000000;\">It is aligned with SPF<\/span> (<\/b><span style=\"color: #183994;\"><a style=\"color: #183994;\" href=\"https:\/\/threatcop.com\/blog\/spf-authentication\/\" rel=\"noopener noreferrer\"><b>Sender Policy Framework<\/b><\/a><\/span><b>) <span style=\"color: #000000;\">and DKIM (Domain Key Identified Mail)<\/span><\/b><span style=\"color: #000000;\"><span style=\"font-weight: 400;\"> standards. DMARC facilitates a <\/span><b>set of email authentication rules<\/b><span style=\"font-weight: 400;\"> to either reject or quarantine emails from unauthorized resources.<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">The DNS (Domain Name Server) holds DMARC entries. These <\/span><b>entries are checked by the company\u2019s exchange server policies<\/b><span style=\"font-weight: 400;\">. The policies are set by the company, based on how the email is authenticated on the receivers\u2019 end. Once the email is authenticated, it<\/span> <span style=\"font-weight: 400;\">is<\/span><b> monitored, rejected, or quarantined based on the configured policy<\/b><span style=\"font-weight: 400;\">.<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">It empowers ISPs (Internet Service Providers) like Gmail, Outlook, Yahoo, etc., to <\/span><b>protect the organization\u2019s email services<\/b><span style=\"font-weight: 400;\"> and the recipient\u2019s personal information from phishing. However, it is not an email authentication protocol that enforces itself. It empowers domain owners to take defined actions against emails that fail authentication checks.<\/span><\/span><\/p>\n\n\n<div class=\"wp-block-image size-full wp-image-7930\">\n<figure class=\"aligncenter\"><img loading=\"lazy\" decoding=\"async\" width=\"1602\" height=\"2021\" src=\"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/01\/DMARC-Policy_2x-100.webp\" alt=\"DMARC Policy\" class=\"wp-image-7930\" srcset=\"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/01\/DMARC-Policy_2x-100.webp 1602w, https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/01\/DMARC-Policy_2x-100-238x300.webp 238w, https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/01\/DMARC-Policy_2x-100-812x1024.webp 812w, https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/01\/DMARC-Policy_2x-100-768x969.webp 768w, https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/01\/DMARC-Policy_2x-100-1218x1536.webp 1218w, https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/01\/DMARC-Policy_2x-100-80x101.webp 80w, https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/01\/DMARC-Policy_2x-100-396x500.webp 396w, https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/01\/DMARC-Policy_2x-100-634x800.webp 634w\" sizes=\"auto, (max-width: 1602px) 100vw, 1602px\" \/><figcaption class=\"wp-element-caption\">Framework for Implementing DMARC Policy<\/figcaption><\/figure>\n<\/div>\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Why_DMARC_is_Important\"><\/span><span style=\"color: #000000;\"><strong>Why DMARC is Important?<\/strong><\/span><span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">According to a spam report by ENISA (European Network and Information Security Agency), <\/span><span style=\"color: #183994;\"><a style=\"color: #183994;\" href=\"https:\/\/www.helpnetsecurity.com\/2010\/01\/22\/95-of-email-is-spam\/#:~:text=Less%20than%205%25%20of%20all,significant%20for%20their%20security%20operations.\" target=\"_blank\" rel=\"noopener\"><b>95% of all emails sent over the internet end up in the spam<\/b><\/a><\/span><span style=\"color: #000000;\"><span style=\"font-weight: 400;\"> box. Most of these <\/span><b>spam emails are sent using spoofed addresses<\/b><span style=\"font-weight: 400;\">. A <\/span><b>cybercriminal can use your organization\u2019s domain name to send emails to your customers<\/b><span style=\"font-weight: 400;\">, tricking them into giving their credentials or sensitive information.&nbsp;<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">If your email domain is impersonated, it can disrupt your relationship with your clients and impact your organization\u2019s reputation. It can also affect your domain\u2019s email deliverability and engagement rates. Once your domain&#8217;s reputation starts deteriorating, even legitimate outbound emails will be redirected to spam or fail to deliver.&nbsp;<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">Securing your domain with DMARC can <\/span><b>prevent impersonators from forging your domain name<\/b><span style=\"font-weight: 400;\"> and sending fraudulent emails on your behalf. It also gives you<\/span><b> insights into your outbound email channel<\/b><span style=\"font-weight: 400;\">. Moreover, it helps in <\/span><b>boosting your domain\u2019s engagement and deliverability rates<\/b><span style=\"font-weight: 400;\">.<\/span><\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"What_is_the_Purpose_of_DMARC\"><\/span><span style=\"color: #000000;\"><strong>What is the Purpose of DMARC?<\/strong><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">The <\/span><b>primary function is to detect and stop email spoofing<\/b><span style=\"font-weight: 400;\">. For instance, a phishing scammer is impersonating the domain of a bank and sending out emails to its customers stating that their accounts have been frozen and prompting them to click on a link to unfreeze them.&nbsp;<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Customers assume that the email is legitimate and click on the embedded link that leads them to a fraudulent website. When the customers log in, cybercriminals will get access to their credentials.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">It is used to fully secure your email domain. Email authentication techniques like SPF and DKIM are designed to protect your domains from such scams. However, cybercriminals have evolved their tactics and can easily bypass these security measures.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">This is why, <strong>it<\/strong><\/span><b>&nbsp;is deployed to establish a link between DKIM and SPF<\/b><span style=\"font-weight: 400;\">. Once you have implemented them, <\/span><b>ISPs send Forensic (RUF) and Aggregate (RUA) reports<\/b><span style=\"font-weight: 400;\"> to the email address that is published in your DMARC record every day.<\/span><\/span><\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter\"><img loading=\"lazy\" decoding=\"async\" width=\"1602\" height=\"1018\" src=\"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/04\/DMARC20Benefits402x-100.webp\" alt=\"Benefits of DMARC\" class=\"wp-image-7874\" srcset=\"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/04\/DMARC20Benefits402x-100.webp 1602w, https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/04\/DMARC20Benefits402x-100-300x191.webp 300w, https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/04\/DMARC20Benefits402x-100-1024x651.webp 1024w, https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/04\/DMARC20Benefits402x-100-768x488.webp 768w, https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/04\/DMARC20Benefits402x-100-1536x976.webp 1536w, https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/04\/DMARC20Benefits402x-100-80x51.webp 80w, https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/04\/DMARC20Benefits402x-100-500x318.webp 500w, https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/04\/DMARC20Benefits402x-100-800x508.webp 800w\" sizes=\"auto, (max-width: 1602px) 100vw, 1602px\" \/><\/figure>\n<\/div>\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Here is some information about the two types of reports available:<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"color: #000000;\"><strong>Aggregate Reports (RUA)<\/strong><\/span><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">Aggregate reports are sent to your email address every day to provide <\/span><b>a detailed overview of your domain\u2019s email traffic<\/b><span style=\"font-weight: 400;\">. These reports include a list of all the IP addresses that have attempted to send emails using your domain name.<\/span><\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"color: #000000;\"><strong>Forensic Reports (RUF)<\/strong><\/span><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">Forensic reports send you <\/span><b>real-time alerts in case emails sent from your domain fail to deliver<\/b><span style=\"font-weight: 400;\">. These reports always include the original message headers and may include original messages.<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\">The purpose of securing email domain servers is fulfilled using the policies that are placed in the DMARC record.<\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"What_is_a_DMARC_Record\"><\/span><span style=\"color: #000000;\"><strong>What is a DMARC Record?<\/strong><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">It is an important element of DMARC implementation. It contains a set of rules and information to define a record. This record informs email recipients whether the domain is set for DMARC or not. If it is set, then the domain owner uses the policy that is present in the record itself.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">The DMARC record is made up of host names and tag-value pairs. It also includes the DNS database of an organization. It is a version of a specifically formatted standard DNS TXT record with a particle name, i.e., &#8220;<\/span><b>_dmarc.mydomain.com<\/b><span style=\"font-weight: 400;\">&#8220;. The tag-value pairs are something like &#8220;<\/span><b>p=<\/b><span style=\"font-weight: 400;\">&#8220;, which is explained later in this blog.<\/span><\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"What_is_the_Importance_of_the_DMARC_Record\"><\/span><span style=\"color: #000000;\"><b>What is the Importance of the DMARC Record?<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">The DMARC record plays a particularly significant role in the validation of an email. It helps the sender and receiver sides match the records at their respective ends, which provides a basis for the authentication of the emails.&nbsp;<\/span><span style=\"font-weight: 400; color: #000000;\">If it is not available, then it will not be possible to match the signatures and policy framework on both ends.&nbsp;<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Example_of_DMARC_Record\"><\/span><span style=\"color: #000000;\"><strong>Example of DMARC Record<\/strong><\/span><span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Here is an example of the record:<\/span><\/p>\n\n\n\n<p class=\"has-text-align-center wp-block-paragraph\"><span style=\"color: #000000;\"><b>v=DMARC1<\/b><span style=\"font-weight: 400;\">;<\/span> <b>p=reject<\/b><span style=\"font-weight: 400;\">; <\/span> <b>rua=mailto:F4EXVjm@rua.tdmarc.com<\/b><span style=\"font-weight: 400;\">; <\/span><b>ruf=<\/b><b>mailto:F4EXVjm@ruf.tdmarc.co<\/b><b>m;<\/b> <b>fo=1<\/b><span style=\"font-weight: 400;\">;<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">The above example has five tag-value pairs.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">In the above DMARC record:<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"color: #000000;\"><b>\u201cv=DMARC1\u201d<\/b><span style=\"font-weight: 400;\"> indicates the version of DMARC<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>\u201cp=reject\u201d<\/b><span style=\"font-weight: 400;\"> indicates the applied DMARC policy<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>\u201crua=mailto:F4EXVjm@rua.tdmarc.com\u201d<\/b><span style=\"font-weight: 400;\"> is the tag that allows mailbox providers to know where the aggregate reports are to be sent<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>\u201cruf=mailto:F4EXVjm@ruf.tdmarc.com;\u201d<\/b><span style=\"font-weight: 400;\"> tag allows the mailbox providers to know where forensic reports are to be sent<\/span><\/span><\/li>\n\n\n\n<li><span style=\"color: #000000;\"><b>\u201cfo=1\u201d<\/b><span style=\"font-weight: 400;\"> tag helps mailbox provider to know about the samples of emails that have SPF and DKIM checks or any of the two checks<\/span><\/span><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">Note: <\/span><i><span style=\"font-weight: 400;\">The domain owner can use other available configuration options for setting up the DMARC policy record.<\/span><\/i><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\">Number of Valid DMARC Records Confirmed via DNS (Source: DMARC.org)<\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"What_are_DMARC_Policies\"><\/span><span style=\"color: #000000;\"><strong>What are DMARC Policies?<\/strong><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">An organization can set a specific policy that determines its email authentication standard. A policy instructs the receiving mail servers, such as Gmail, Outlook, Live, etc., about the rules to follow. It enforces the respective policy in accordance with the DMARC check.&nbsp;<\/span><\/p>\n\n\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-2 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large wp-duotone-unset-1\"><img loading=\"lazy\" decoding=\"async\" width=\"6134\" height=\"3783\" data-id=\"9694\" src=\"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/09\/Valid-DMARC-Records-1.webp\" alt=\"DMARC RECORD\" class=\"wp-image-9694\"\/><\/figure>\n<\/figure>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">There are three types of policies that you can choose from for handling unauthorized emails. These emails are either sent or received on your behalf by instituting one of the following policies in the DMARC record:&nbsp;<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\n<h3><span class=\"ez-toc-section\" id=\"None_Policy\"><\/span><span style=\"color: #000000;\">None Policy&nbsp;<\/span><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><b>&#8220;p=none&#8221;<\/b><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">This policy monitors your email traffic and does not take any specific action for emails that fail the DMARC check. You can use this policy to gather DMARC reports and analyze the data in those reports.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">The \u201c<\/span><i><span style=\"font-weight: 400;\">none<\/span><\/i><span style=\"font-weight: 400;\">\u201d policy instructs the ISPs to send the reports to the email address published in the RUF or RUA tag of your domain\u2019s DMARC record. This is also known as a \u2018<\/span><b>Monitoring Only Policy\u2019<\/b><span style=\"font-weight: 400;\"> as it helps one to get a deep insight into their email channel. This policy will not affect email deliverability and will allow all emails to reach the recipient\u2019s inbox irrespective of their DMARC authentication.<\/span><\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\n<h3><span class=\"ez-toc-section\" id=\"Quarantine_Policy\"><\/span><span style=\"color: #000000;\">Quarantine Policy&nbsp;<\/span><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><b>&#8220;p=quarantine&#8221;<\/b><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">According to this policy, unauthorized emails are sent to the spam folder. It allows email receivers to send DMARC-failed emails in quarantine, i.e., to the junk\/spam folder.&nbsp;<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">The \u201c<\/span><i><span style=\"font-weight: 400;\">quarantine<\/span><\/i><span style=\"font-weight: 400;\">\u201d policy instructs the ISPs to redirect emails failing the DMARC authentication to the recipient\u2019s spam folder. The emails that pass the DMARC authentication will be successfully delivered to the recipient\u2019s primary inbox. Even though this policy mitigates the impact of spoofing, the spoof emails might still be able to reach the receiver.<\/span><\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\n<h3><span class=\"ez-toc-section\" id=\"Reject_Policy\"><\/span><span style=\"color: #000000;\">Reject Policy&nbsp;<\/span><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><b>&#8220;p=reject&#8221;<\/b><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><b>The Reject policy is the most recommended policy as it secures all your emails.<\/b><span style=\"font-weight: 400;\"> It ensures that any email that fails the DMARC check is not delivered to the receiver at all.<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">The &#8220;<\/span><i><span style=\"font-weight: 400;\">reject<\/span><\/i><span style=\"font-weight: 400;\">&#8221; policy instructs the ISPs to not deliver emails that fail the DMARC authentication at all. Emails that pass the DMARC authentication will be successfully delivered to the recipient\u2019s primary inbox. Since this policy prevents all spoofed emails from landing in the recipient\u2019s inbox, it mitigates the impact of spoofing.<\/span><\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"How_does_DMARC_Work\"><\/span><span style=\"color: #000000;\"><strong>How does DMARC Work?<\/strong><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><b>DMARC is used in combination with SPF and DKIM to authenticate an email and determine what to do if the email is from an unauthorized source.<\/b><span style=\"font-weight: 400;\"> The email sender\u2019s DMARC record instructs the email recipient on how to deal with the unauthorized email (for eg. spoofed email) according to the specific enforced policy.&nbsp;<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">This is the stepwise procedure of how DMARC works:&nbsp;<\/span><\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li><span style=\"font-weight: 400; color: #000000;\">The email domain owner publishes a DMARC DNS record.<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">When an email is sent from the sender\u2019s domain or the sender\u2019s spoofed domain, the receiving mail server checks for the domain\u2019s DMARC record.&nbsp;<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">The receiving mail server then checks for DKIM and SPF authentication and alignment to verify whether the sender\u2019s domain is legitimate by looking for:<\/span><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"font-weight: 400; color: #000000;\">Validated DKIM signature<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Sender\u2019s IP address matches with the senders in the SPF record<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">Sender\u2019s domain alignment test to verify the message headers<\/span><\/li>\n<\/ul>\n\n\n<div class=\"wp-block-image wp-image-9540 size-full\">\n<figure class=\"aligncenter\"><img loading=\"lazy\" decoding=\"async\" width=\"6134\" height=\"3784\" src=\"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/01\/DKIM.jpg\" alt=\"DKIM\" class=\"wp-image-9540\"\/><figcaption class=\"wp-element-caption\"><span style=\"color: #000000;\">Domain Keys Identified Mail (DKIM)<\/span><\/figcaption><\/figure>\n<\/div>\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">During the verification of DKIM and SPF, the receiving mail server applies the sender domain owner\u2019s policy (None, Quarantine, or Reject), based on the verification results.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Later, the receiving email server sends a report to the sender\u2019s email server. The report contains a verification analysis of the email received on behalf of the sender\u2019s domain.<\/span><\/p>\n\n\n<div class=\"wp-block-image wp-image-8974 size-full\">\n<figure class=\"aligncenter\"><img loading=\"lazy\" decoding=\"async\" width=\"2922\" height=\"3019\" src=\"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/01\/24-FI5.jpg\" alt=\"SPF\" class=\"wp-image-8974\"\/><figcaption class=\"wp-element-caption\">Sender Policy Framework (SPF)<\/figcaption><\/figure>\n<\/div>\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">These reports are called the DMARC Aggregate Reports and are sent to the specified email address or addresses in the domain\u2019s DMARC record. DMARC allows the organizations to determine the procedure for emails that failed the DMARC checks. They can define a policy in their domain\u2019s DMARC record.&nbsp;<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><b>Once all these details have been checked, the ISP determines whether an email is DMARC failed or DMARC compliant<\/b><span style=\"font-weight: 400;\">.<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Notably, email receivers aren\u2019t obligated to follow the policy set by you. Sometimes, they can override DMARC policies with a local policy in case they have reason to doubt the legitimacy of an email. So, an email that has failed the DMARC authentication can still land in the recipient\u2019s primary inbox even if you have enforced the reject policy.<\/span><\/p>\n\n\n\n<figure class=\"wp-block-embed is-type-video is-provider-youtube wp-block-embed-youtube wp-embed-aspect-16-9 wp-has-aspect-ratio\"><div class=\"wp-block-embed__wrapper\">\n<iframe loading=\"lazy\" title=\"What is DMARC?\" width=\"500\" height=\"281\" src=\"https:\/\/www.youtube.com\/embed\/SVD8Fb-MccU?feature=oembed\" frameborder=\"0\" allow=\"accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share\" referrerpolicy=\"strict-origin-when-cross-origin\" allowfullscreen><\/iframe>\n<\/div><\/figure>\n\n\n<h2><span class=\"ez-toc-section\" id=\"Email_Authentication_Standards\"><\/span><span style=\"color: #000000;\"><b>Email Authentication Standards<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p style=\"text-align: justify;\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">Email authentication is a technical methodology that is implem<\/span><span style=\"font-weight: 400;\">ented with SMTP to make sure that email is not forged. It provides a layered approach to verifying the genuineness of emails. The purpose of the authentication standard is to block and prevent malicious or fraudulent emails that could possibly lead to <\/span><\/span><span style=\"color: #183994;\"><a style=\"color: #183994;\" href=\"https:\/\/threatcop.com\/blog\/bec-attack\/\" rel=\"noopener noreferrer\"><b>BEC attacks<\/b><\/a><\/span><span style=\"font-weight: 400; color: #000000;\"> or phishing attacks.&nbsp;<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">T<span style=\"color: #000000;\">he most popular and widely used email authentication standards are <\/span><\/span><span style=\"color: #000000;\"><b>Sender Policy Framework<\/b> <b>(SPF), <\/b><\/span><span style=\"color: #183994;\"><a style=\"color: #183994;\" href=\"https:\/\/threatcop.com\/blog\/dkim-the-advance-authentication-technique-for-dmarc\/\" rel=\"noopener noreferrer\"><b>Domain Keys Identified Mail<\/b><\/a><\/span><span style=\"color: #000000;\"><b> (DKIM), and DMARC.<\/b><\/span><\/p>\n<h2 style=\"text-align: left;\"><span class=\"ez-toc-section\" id=\"Statistics_on_Email_Attacks_and_DMARC\"><\/span><span style=\"color: #000000;\"><b>Statistics on Email Attacks and DMARC<\/b><\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><span style=\"font-weight: 400; color: #000000;\">All the statistics presented below are sourced from \u2018Global DMARC Adoption Report, 2019 on the <\/span><span style=\"color: #183994;\"><a style=\"color: #183994;\" href=\"https:\/\/www.businesswire.com\/news\/home\/20190716005122\/en\/%C2%A0Global-DMARC-Adoption-Report-Reveals-Nearly-80-Percent-of-Companies-Leave-Consumer-Data-Vulnerable\" target=\"_blank\" rel=\"noopener noreferrer\"><b>250ok platform<\/b><\/a><\/span><span style=\"font-weight: 400; color: #000000;\">, and the \u201c<\/span><span style=\"color: #183994;\"><a style=\"color: #183994;\" href=\"https:\/\/kdmarc.com\/dmarc-industry-report-2020-2021?utm_source=Blog&amp;utm_medium=KDMARC+Blog&amp;utm_campaign=DMARC\" target=\"_blank\" rel=\"noopener noreferrer\"><b>DMARC Industry Report<\/b><\/a><\/span><span style=\"font-weight: 400; color: #000000;\">\u201d by Kratikal.<\/span><\/p>\n<ol>\n<li style=\"font-weight: 400; text-align: justify;\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">Only <\/span><b>113 out of Fortune 500 (23%)<\/b><span style=\"font-weight: 400;\"> companies have implemented DMARC, irrespective of whether they are the highest revenue companies.&nbsp;<\/span><\/span><\/li>\n<li style=\"font-weight: 400; text-align: justify;\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">The most unsecured segment in the travel industry, where <\/span><b>1% of domains have a reject policy and 86% of domains have no policy<\/b><span style=\"font-weight: 400;\">.<\/span><\/span><\/li>\n<li style=\"font-weight: 400; text-align: justify;\"><span style=\"color: #000000;\"><b>81.5% of all the domains<\/b><span style=\"font-weight: 400;\"> of the executive branch of government have enforced a reject policy.&nbsp;<\/span><\/span><\/li>\n<li style=\"font-weight: 400; text-align: justify;\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">The most significant progress was found among law firms, where <\/span><b>DMARC implementation increased by 19% from 2018 to 2019<\/b><span style=\"font-weight: 400;\">.<\/span><\/span><\/li>\n<li style=\"font-weight: 400; text-align: justify;\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">On a global level, <\/span><b>70% of all emails are suspicious<\/b><span style=\"font-weight: 400;\">.<\/span><\/span><\/li>\n<li style=\"font-weight: 400; text-align: justify;\"><span style=\"color: #000000;\"><b>BEC Scams target over 400 businesses<\/b><span style=\"font-weight: 400;\"> every day.<\/span><\/span><\/li>\n<li style=\"font-weight: 400; text-align: justify;\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">On average, only <\/span><b>3% of the phishing mail is reported by employees<\/b><span style=\"font-weight: 400;\"> in organizations.<\/span><\/span><\/li>\n<li style=\"font-weight: 400; text-align: justify;\"><span style=\"color: #000000;\"><b>Employees in organizations report only 3% of phishing emails<\/b><span style=\"font-weight: 400;\"> on average.<\/span><\/span><\/li>\n<li style=\"font-weight: 400; text-align: justify;\"><span style=\"color: #000000;\"><b>Organizations incur losses of over $500 million<\/b><span style=\"font-weight: 400;\"> after getting a victim of phishing attacks every year.<\/span><\/span><\/li>\n<li style=\"font-weight: 400; text-align: justify;\"><span style=\"font-weight: 400; color: #000000;\">During the end of 2018,&nbsp;<\/span><\/li>\n<li style=\"font-weight: 400; text-align: justify;\"><span style=\"font-weight: 400; color: #000000;\">According to a <\/span><strong><span style=\"color: #183994;\"><a style=\"color: #183994;\" href=\"https:\/\/www.enisa.europa.eu\/publications\/spam\" target=\"_blank\" rel=\"noopener noreferrer\">survey conducted by ENISA<\/a><\/span><\/strong><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">, <\/span><b>70% of respondents believe that spam is extremely significant<\/b><span style=\"font-weight: 400;\"> from the perspective of security.<\/span><\/span><\/li>\n<li style=\"font-weight: 400; text-align: justify;\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">In the same report, it was stated that <\/span><b>13% of data breaches<\/b><span style=\"font-weight: 400;\"> between January 2019 and April 2020 were caused by malicious spam.<\/span><\/span><\/li>\n<li style=\"font-weight: 400; text-align: justify;\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">ENISA also found that <\/span><b>58.3% of email accounts were spammed<\/b><span style=\"font-weight: 400;\"> in the mining industry.<\/span><\/span><\/li>\n<\/ol>\n<h3><span class=\"ez-toc-section\" id=\"TDMARC_is_the_Solution\"><\/span><span style=\"color: #000000;\"><strong>TDMARC is the Solution<\/strong><\/span><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400; color: #000000;\">From Statistics, it can be seen that organizations are most vulnerable if they haven\u2019t implemented DMARC solutions for their email domains. Thus, DMARC provides additional security to email servers along with SPF and DKIM.&nbsp;<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400; color: #000000;\">Though the concept of DMARC is well and clear from the blog, the concerns for organizations still persist regarding how to implement and configure DMARC rightly. This is where <span style=\"color: #183994;\"><strong><a style=\"color: #183994;\" href=\"https:\/\/threatcop.com\/tdmarc?utm_source=Threatcop&amp;utm_medium=Threatcop+Blog&amp;utm_campaign=What+is+DMARC%3F\" rel=\"noopener noreferrer\">TDMARC<\/a><\/strong><\/span> helps. TDMARC is designed and developed to <strong>help organizations in deploying and configuring DMARC, DKIM, and SPF rightly.<\/strong>&nbsp;<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400; color: #000000;\">TDMARC is a <strong>SaaS-based email authentication tool<\/strong> that helps organizations secure their outbound email flow and prevent the misuse of their email domain. <\/span><\/p>\n<p><span style=\"font-weight: 400; color: #000000;\">Not only this, TDMARC ensures that:<\/span><\/p>\n<ul>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400; color: #000000;\">Prevents email-based attacks<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400; color: #000000;\">Preserves brand reputation&nbsp;<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400; color: #000000;\">Improves email deliverability<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400; color: #000000;\">Boosts email engagement rates<\/span><\/li>\n<\/ul>","protected":false},"excerpt":{"rendered":"<p>According to Global DMARC Adoption Report of 2019, 79.7% of the companies have left their consumer data vulnerable by not implementing email domain security protocols. (Source: Business Wire) Email is one of the most standard and official forms of communication for exchanging messages everywhere in the world. But have you ever wondered whether the emails [&hellip;]<\/p>\n","protected":false},"author":12,"featured_media":10779,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[46],"tags":[],"class_list":["post-2171","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-dmarc"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.7 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>What is DMARC and How Does It Work?<\/title>\n<meta name=\"description\" content=\"DMARC is an email authentication protocol that protects your organization\u2019s email domain from email based attacks such as phishing and BEC.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/threatcop.com\/blog\/what-is-dmarc\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"What is DMARC and How Does It Work?\" \/>\n<meta property=\"og:description\" content=\"DMARC is an email authentication protocol that protects your organization\u2019s email domain from email based attacks such as phishing and BEC.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/threatcop.com\/blog\/what-is-dmarc\/\" \/>\n<meta property=\"og:site_name\" content=\"Threatcop\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/people\/Threatcop\/100083109892339\/\" \/>\n<meta property=\"article:published_time\" content=\"2022-01-24T12:32:40+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-05-21T13:07:11+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/01\/what-is-dmarc.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1000\" \/>\n\t<meta property=\"og:image:height\" content=\"667\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Kumar Shantanu\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatcop\" \/>\n<meta name=\"twitter:site\" content=\"@threatcop\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Kumar Shantanu\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"13 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/what-is-dmarc\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/what-is-dmarc\\\/\"},\"author\":{\"name\":\"Kumar Shantanu\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#\\\/schema\\\/person\\\/fb68b06665d9ecb47912ab0c3768ff23\"},\"headline\":\"What is DMARC and How Does It Work?\",\"datePublished\":\"2022-01-24T12:32:40+00:00\",\"dateModified\":\"2025-05-21T13:07:11+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/what-is-dmarc\\\/\"},\"wordCount\":2467,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/what-is-dmarc\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/01\\\/what-is-dmarc.jpg\",\"articleSection\":[\"DMARC\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/threatcop.com\\\/blog\\\/what-is-dmarc\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/what-is-dmarc\\\/\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/what-is-dmarc\\\/\",\"name\":\"What is DMARC and How Does It Work?\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/what-is-dmarc\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/what-is-dmarc\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/01\\\/what-is-dmarc.jpg\",\"datePublished\":\"2022-01-24T12:32:40+00:00\",\"dateModified\":\"2025-05-21T13:07:11+00:00\",\"description\":\"DMARC is an email authentication protocol that protects your organization\u2019s email domain from email based attacks such as phishing and BEC.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/what-is-dmarc\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/threatcop.com\\\/blog\\\/what-is-dmarc\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/what-is-dmarc\\\/#primaryimage\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/01\\\/what-is-dmarc.jpg\",\"contentUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/01\\\/what-is-dmarc.jpg\",\"width\":1000,\"height\":667,\"caption\":\"what is dmarc\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/what-is-dmarc\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"What is DMARC and How Does It Work?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/\",\"name\":\"Threatcop\",\"description\":\"Cybersecurity Blogs, News, Updates, and Articles\",\"publisher\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#organization\",\"name\":\"Threatcop\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/03\\\/cropped-original-logo-TC.png\",\"contentUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/03\\\/cropped-original-logo-TC.png\",\"width\":951,\"height\":228,\"caption\":\"Threatcop\"},\"image\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/people\\\/Threatcop\\\/100083109892339\\\/\",\"https:\\\/\\\/x.com\\\/threatcop\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/threatcop\\\/\",\"https:\\\/\\\/www.instagram.com\\\/threatcop_official\\\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#\\\/schema\\\/person\\\/fb68b06665d9ecb47912ab0c3768ff23\",\"name\":\"Kumar Shantanu\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/01\\\/Shantanu-Image.jpeg\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/01\\\/Shantanu-Image.jpeg\",\"contentUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/01\\\/Shantanu-Image.jpeg\",\"caption\":\"Kumar Shantanu\"},\"description\":\"Senior Writer Shantanu is an accomplished content strategist and technology enthusiast at Threatcop Inc. With a knack for translating technical intricacies into reader-friendly narratives, Shantanu contributes to making cybersecurity insights both informative and enjoyable for tech enthusiasts and general audiences alike.\",\"sameAs\":[\"http:\\\/\\\/threatcop.com\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"What is DMARC and How Does It Work?","description":"DMARC is an email authentication protocol that protects your organization\u2019s email domain from email based attacks such as phishing and BEC.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/threatcop.com\/blog\/what-is-dmarc\/","og_locale":"en_US","og_type":"article","og_title":"What is DMARC and How Does It Work?","og_description":"DMARC is an email authentication protocol that protects your organization\u2019s email domain from email based attacks such as phishing and BEC.","og_url":"https:\/\/threatcop.com\/blog\/what-is-dmarc\/","og_site_name":"Threatcop","article_publisher":"https:\/\/www.facebook.com\/people\/Threatcop\/100083109892339\/","article_published_time":"2022-01-24T12:32:40+00:00","article_modified_time":"2025-05-21T13:07:11+00:00","og_image":[{"width":1000,"height":667,"url":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/01\/what-is-dmarc.jpg","type":"image\/jpeg"}],"author":"Kumar Shantanu","twitter_card":"summary_large_image","twitter_creator":"@threatcop","twitter_site":"@threatcop","twitter_misc":{"Written by":"Kumar Shantanu","Est. reading time":"13 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#article","isPartOf":{"@id":"https:\/\/threatcop.com\/blog\/what-is-dmarc\/"},"author":{"name":"Kumar Shantanu","@id":"https:\/\/threatcop.com\/blog\/#\/schema\/person\/fb68b06665d9ecb47912ab0c3768ff23"},"headline":"What is DMARC and How Does It Work?","datePublished":"2022-01-24T12:32:40+00:00","dateModified":"2025-05-21T13:07:11+00:00","mainEntityOfPage":{"@id":"https:\/\/threatcop.com\/blog\/what-is-dmarc\/"},"wordCount":2467,"commentCount":0,"publisher":{"@id":"https:\/\/threatcop.com\/blog\/#organization"},"image":{"@id":"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#primaryimage"},"thumbnailUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/01\/what-is-dmarc.jpg","articleSection":["DMARC"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/threatcop.com\/blog\/what-is-dmarc\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/threatcop.com\/blog\/what-is-dmarc\/","url":"https:\/\/threatcop.com\/blog\/what-is-dmarc\/","name":"What is DMARC and How Does It Work?","isPartOf":{"@id":"https:\/\/threatcop.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#primaryimage"},"image":{"@id":"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#primaryimage"},"thumbnailUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/01\/what-is-dmarc.jpg","datePublished":"2022-01-24T12:32:40+00:00","dateModified":"2025-05-21T13:07:11+00:00","description":"DMARC is an email authentication protocol that protects your organization\u2019s email domain from email based attacks such as phishing and BEC.","breadcrumb":{"@id":"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/threatcop.com\/blog\/what-is-dmarc\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#primaryimage","url":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/01\/what-is-dmarc.jpg","contentUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/01\/what-is-dmarc.jpg","width":1000,"height":667,"caption":"what is dmarc"},{"@type":"BreadcrumbList","@id":"https:\/\/threatcop.com\/blog\/what-is-dmarc\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/threatcop.com\/blog\/"},{"@type":"ListItem","position":2,"name":"What is DMARC and How Does It Work?"}]},{"@type":"WebSite","@id":"https:\/\/threatcop.com\/blog\/#website","url":"https:\/\/threatcop.com\/blog\/","name":"Threatcop","description":"Cybersecurity Blogs, News, Updates, and Articles","publisher":{"@id":"https:\/\/threatcop.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/threatcop.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/threatcop.com\/blog\/#organization","name":"Threatcop","url":"https:\/\/threatcop.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/threatcop.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/03\/cropped-original-logo-TC.png","contentUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/03\/cropped-original-logo-TC.png","width":951,"height":228,"caption":"Threatcop"},"image":{"@id":"https:\/\/threatcop.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/people\/Threatcop\/100083109892339\/","https:\/\/x.com\/threatcop","https:\/\/www.linkedin.com\/company\/threatcop\/","https:\/\/www.instagram.com\/threatcop_official\/"]},{"@type":"Person","@id":"https:\/\/threatcop.com\/blog\/#\/schema\/person\/fb68b06665d9ecb47912ab0c3768ff23","name":"Kumar Shantanu","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2024\/01\/Shantanu-Image.jpeg","url":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2024\/01\/Shantanu-Image.jpeg","contentUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2024\/01\/Shantanu-Image.jpeg","caption":"Kumar Shantanu"},"description":"Senior Writer Shantanu is an accomplished content strategist and technology enthusiast at Threatcop Inc. With a knack for translating technical intricacies into reader-friendly narratives, Shantanu contributes to making cybersecurity insights both informative and enjoyable for tech enthusiasts and general audiences alike.","sameAs":["http:\/\/threatcop.com"]}]}},"_links":{"self":[{"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/posts\/2171","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/comments?post=2171"}],"version-history":[{"count":27,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/posts\/2171\/revisions"}],"predecessor-version":[{"id":12656,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/posts\/2171\/revisions\/12656"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/media\/10779"}],"wp:attachment":[{"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/media?parent=2171"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/categories?post=2171"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/tags?post=2171"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}