Email authentication

Dede · 02-21-2012, 03:12 PM

I am curious about the Domain-based Message Authentication, Reporting & Conformation (DMARC).
I don't know much about it, but apparently it is a new email standard that will help protect against phishing or malicious emails.
Does anyone know how it works, and how does one apply the new standard.
I found this link:
Domain Assurance anti-phishing solution
They also talk about SPF (Sender Policy Framework) and DKIM (DomainKeys Identified Mail).
Thanks.

**RobbieLePommie** · 02-23-2012, 04:42 AM

I know a bit about SPF, but none of the others... sorry.

Dede · 02-23-2012, 09:49 PM

I used the utility they had to check this out, and I got a pass for the SPF domain alignment result. But the way I understand it is that the domain ip address is a permitted sender of emails correct?

**MikeMann** · 02-24-2012, 01:49 AM

From what I've read and understand I see the following:

SPF is something which can be setup by the sender (on the domain level). Say you are the owner of example.com, you could setup an SPF record to allow only emails from example.com and localhost/127.0.0.1/your ip address) to be sent out through the server.

DKIM almost sounds like a chain of custody and makes me think of CSI

(Read about DKIM @ DomainKeys Identified Mail (DKIM))

The whole idea of DMARC from a phishing standpoint (which is what it seems to be aimed at) sounds nice, on paper. Just thinking out loud here, but what if somehow someone at the powers that be decide to "block" your domain from sending or receiving. If they can somehow set your domain as "untrusted", you could be screwed.

Dede · 02-24-2012, 11:25 AM

Very interesting.
I will do more research on this.
Thanks for the feedback guys.