The third JPAAWG General Meeting will be held on November 11th and 12th in a virtual format. An exciting program has been organized, and will once again feature an update on DMARC adoption and standards developments from DMARC.org, as well as keynotes from M3AAWG and sessions with leading industry figures from across Japan and the […]
The number of valid DMARC policies observed in the DNS increased by roughly 300% over the course of 2019, based on analysis of data from Farsight Security. At the end of 2018 there were roughly 630,000 valid DMARC policies published, and at the end of 2019 this figure was 1.89 million. (See similar announcements from […]
The Japan Anti-Abuse Working Group (JPAAWG) held its second annual meeting in Tokyo, Japan on November 14th and 15th, 2019. DMARC.org director Steve Jones was invited to give a general update on DMARC and related matters, and the slides from that presentation are now available for download (with notes). The update covers a number of areas, including two new publications from the […]
The Authenticated Received Chain (ARC) was designed to address situations where email messages that are forwarded, and in some cases altered, will no longer pass email authentication checks. After spending 3 years as a work item in the IETF‘s DMARC Working Group, the specification was published as RFC 8617 (HTML, PDF, plain text) on July […]
The Japan Anti-Abuse Working Group (JPAAWG) held its first meeting in Tokyo, Japan on November 8th, 2018. DMARC.org director Steve Jones was invited to give a general update on DMARC and related matters, and the slides from that presentation are now available for download. The update covers several areas of interest to people working to […]
Over the course of 2018 the number of valid DMARC policies published in the DNS increased a little over two and a half times, based on analysis of data from Farsight Security. At the end of 2017 there were 240,151 DMARC policies published, and at the end of 2018 this figure was roughly 630,000. (The […]
A report released by the Global Cyber Alliance in late October attempts to quantify the expenses avoided by the companies that they have helped to implement strict DMARC policies (quarantine or reject). The full report (available here) contains a wealth of information and quotes from GCA and industry partners, while the executive summary shares a […]
As first reported on the arc-spec.org website, on October 2nd the IETF’s DMARC Working Group published version 18 of the ARC specification document, incorporating the changes suggested during the Working Group Last Call (WGLC). There are many small language changes to clarify concepts or bring usage in line with other IETF documents, such as Email […]
The DMARC Working Group has completed Last Call for the ARC specification. This means that when the final consensus changes are incorporated, the document will be submitted for approval and publication by the IETF. It is possible that the specification might be published before the next IETF meeting in November, though perhaps more likely between then […]
Using DNS query data supplied by Farsight Security, global deployment of DMARC appears to have grown by roughly 400% over the course of 2017. The portion of these domains publishing “quarantine” or “reject” policies – which generally prevent fraudulent messages using one of these domains from being delivered to the inbox – rose from 21% […]