IT Security News & Blog

3 Ways in Which DMARC Gives Hawk-Like Visibility Over Email Domains

Posted: 28 November 2018

Every so often, a technology or methodology emerges which could have potentially profound effects on an aspect of IT security globally. Sometimes they are embraced; and other times they cannot find traction with the IT teams of the world and remain shamefully obscure.

DMARC (Domain Message Authentication Reporting & Conformance) is one such technology. Although, which path it is to take is still to be determined.

This revolutionising method of binning spoofed emails is a theoretical winner in all cases, however its uptake has been slow and the majority of IT teams still unaware of; or unfamiliar with it.

In this blog, we take a look at three reasons why we believe that DMARC provides unparalleled visibility over email domains.

 

Find All Unauthorised Channels of Email

DMARC provides a whole host of useful information in its RUF (Reporting URI for Forensic Reports) and RUA (Reporting URI for Aggregate Reports) reports, including the source IP address or sending host of the email.

Why is this important?

Well, it allows you to determine whether the emails being sent are coming from legitimate sources, such as your own email server or if they are being sent from another source.

Emails coming from another source could be phishing attempts, fraudulent emails spoofing your organisations identity or elements shadow IT. Whereby a legitimate department is using or has purchased a service which sends out emails in the organisations name.

In all three cases, IT administrators and teams are unaware of such occurrences prior to the use of DMARC.

 

Instruct Recipient Email Servers on How to Handle Your Emails

Well that sounds pretty impressive...select accept all and keep the bosses happy.

Not quite. Remember this is a security solution.

DMARC allows you to instruct recipient email servers on how to handle emails which they believe are not coming from genuine sources of email for your particular domain. This could be to accept them, quarantine them or remove them entirely.

This gives you full control in fighting illegitimate sources of email, which could be phishing or fraudulent in nature.

 

Increase Your Email Deliverability Rates

Using a combination of points one and two, you can increase the successful deliverability of legitimate emails.

Now we are keeping the bosses happy.

If you imagine the scenario before DMARC. Legitimate and illegitimate email was mixed up together and sent to recipients. The more illegitimate, phishing or fraudulent emails, the higher the risk of accepting your emails at the recipient side and as a result the trust in your email domain is reduced.

Email security tools react to this level of trust by preventing some of your emails, without regard to whether they are genuine or not. Thus reducing successful deliverability.

Now add DMARC, which is being used to drop those illegitimate sources of email. Your email domain reputation increases and so does the chance of your emails making it into recipient mailboxes.

Are you interested in how DMARC can help your organisation protect and secure email channels? Speak to one of our solution specialists today for more information.

 

 

BMJ Case Study for Human Firewall and EmailAuth

Topics: DMARC, Email Security, Phishing, EmailAuth

Chris Payne

Written by Chris Payne

Managing Director - Advanced Cyber Solutions