An Authenticated Received Chain (ARC) table was organized at the weekend hackathon held before the IETF 99 meeting in Prague this week. ARC is an official work item of the IETF DMARC Working Group, and will be discussed during the working group meeting Thursday morning. Participants from two different vendors worked on new implementations of […]
ARC Training at M3AAWG 40 in Lisbon, Portugal
There will be training in configuring ARC-enabled software, and adding ARC support to email infrastructure using open source software, at the 40th general meeting of M3AAWG. This meeting will be held at the Corinthia Hotel in Lisbon, Portugal the week of June 12th. Several members of the ARC community will conduct the tutorial program on Monday, […]
Can I Use DMARC If I Have Only Deployed SPF?
A question people asked repeatedly in 2016 was whether or not their organization could deploy DMARC if they only used SPF at present. They knew the recommendation is to use both DKIM and SPF, and were concerned that their organizations couldn’t benefit from DMARC without DKIM. The short answer is that you can use DMARC […]
Updates To Who Is Using DMARC?
On February 25th of this year we published a page listing interesting companies that were using DMARC in some capacity. While not a comprehensive survey, it included well-known companies who had published a DMARC policy in DNS. We recently took a look at that list, and were pleased to see that some updates were in […]
New DMARC Setup Tool From Global Cyber Alliance
Today the Global Cyber Alliance (GCA) officially announced a suite of free tools or implementation guides to help organizations deploy DMARC, DKIM, and SPF. This is the first in a series of GCA initiatives to combat phishing and other systemic cyber risks. “Adoption of DMARC is one of the ways organizations can protect themselves and […]
DMARC.org Presenting In Tokyo Nov 28th
DMARC.org Executive Director Steven Jones will be speaking about email authentication at TwoFive, Inc’s Cloud and Messaging Day event in Tokyo on Monday, November 28th. Also appearing will be Heikki Gruner of Cloudmark, and anti-spam campaigner Neil Schwartzman. A panel discussion later in the program will also feature noted email experts Shuji Sakuraba and Ayachika […]
United Kingdom Leading The Way In Email Security
The United Kingdom may have the most forward looking policies and deployment plans of any major government. Last week Chancellor of the Exchequer Philip Hammond announced a £1.9 billion national cyber security strategy that includes a broad series of measures, and will continue a series of improvements in email security that the UK government has […]
Introduction to ARC to be presented at M3AAWG 38 in Paris on Oct 26
Kurt Andersen (LinkedIn) and Steve Jones (DMARC.org) will be presenting an overview of the Authenticated Received Chain (ARC) protocol at the 38th Messaging, Malware, and Mobile Anti-Abuse Working Group meeting in Paris, France from 1-2PM local time on Wednesday, October 26th. The description of this session from the conference agenda reads: The new ARC specification […]
Zendesk moves to “p=reject”
Customer service and support platform provider Zendesk has employed DMARC to monitor email activity using their domains for several years. In September, Zendesk switched over 80,000 sub-domains that they use to support their customers to a “p=reject” DMARC policy. This prevents fraudulent email using these sub-domains from reaching consumers, and protects their customers’ and Zendesk’s […]
DMARC Q&A on Litmus Blog
A short time ago Bettina Specht of email marketing and software firm Litmus compiled questions her colleagues and their customers had about DMARC and email authentication. They cover the most common topics and concerns around preventing fraudulent email from affecting your brand and customers. The answers provided by DMARC.org staff have now been compiled into […]