What is dmarc
Last updated: April 1, 2026
Key Facts
- DMARC combines SPF (Sender Policy Framework) and DKIM (DomainKeys Identified Mail) authentication methods to verify email legitimacy
- It provides feedback to senders about which emails pass or fail authentication checks through detailed reports
- DMARC policies allow domain owners to specify how unauthorized emails should be handled—rejected, quarantined, or allowed
- The protocol is widely adopted by major email providers and organizations to prevent phishing and domain spoofing attacks
- DMARC protects both organizations and their customers from fraudulent emails sent in the organization's name
Overview
DMARC is an email authentication protocol that helps prevent email spoofing and phishing attacks. It works by allowing domain owners to publish policies that specify which servers are authorized to send emails on their behalf and what actions should be taken if an email fails authentication. This protocol has become essential for protecting brand reputation and preventing fraud.
How DMARC Works
DMARC operates by validating emails against two existing protocols: SPF checks that the sending server's IP address is authorized, and DKIM verifies that the email hasn't been modified and is signed by an authorized party. When an email arrives at a recipient's server, it's checked against the DMARC policy published in the sender's domain DNS records. If the email passes either SPF or DKIM validation, it's considered authenticated.
DMARC Policies
Domain administrators can set three types of DMARC policies: 'none' (monitor only), 'quarantine' (send suspicious emails to spam), and 'reject' (refuse unauthorized emails entirely). Organizations typically start with 'none' or 'quarantine' while monitoring results, then transition to 'reject' once they've verified all legitimate email sources.
Reporting and Monitoring
DMARC provides detailed reports about email authentication results. Aggregate reports show statistics about emails passing or failing authentication, while forensic reports provide detailed information about authentication failures. These reports help organizations identify unauthorized email sources and improve their email infrastructure.
Implementation Benefits
Implementing DMARC offers significant benefits including protection against brand impersonation, reduction of phishing attacks, improved email deliverability, and better visibility into email traffic. Organizations that implement strict DMARC policies experience fewer spoofing incidents and greater customer trust.
Related Questions
What's the difference between DMARC, SPF, and DKIM?
SPF authorizes sending servers by IP address, DKIM signs emails cryptographically, and DMARC combines both checks and enforces policies. DMARC provides the policy framework that tells recipient servers what to do if emails fail authentication.
Why would an email fail DMARC authentication?
Emails fail DMARC when they don't pass SPF or DKIM checks—typically because the sending server isn't authorized, the email has been modified, or the domain hasn't properly configured authentication records.
Does DMARC prevent all phishing attacks?
DMARC prevents phishing attacks that use domain spoofing (impersonating the real domain), but it doesn't prevent lookalike domains or content-based phishing. It's one layer of defense in comprehensive email security.
More What Is in Daily Life
- What Is a Credit ScoreA credit score is a three-digit number, typically ranging from 300 to 850, that represents your cred…
- What Is CD rates make no sense based on length of time invested. Explain like I'm 5CD (Certificate of Deposit) rates often don't increase with longer lock-up times the way people expe…
- What is a phdA PhD (Doctor of Philosophy) is a doctoral degree earned after completing advanced academic research…
- What is a polymathA polymath is a person with deep knowledge and expertise across multiple different fields or academi…
- What is aaveAAVE stands for African American Vernacular English, a dialect with distinct grammar, pronunciation,…
- What is aarch64ARMv8-A (commonly called ARM64 or AArch64) is a 64-bit processor architecture developed by ARM Holdi…
- What is about menTopics and discussions about men typically encompass masculinity, male identity, gender roles, men's…
- What is abiturAbitur is the German academic qualification awarded upon completion of secondary education, typicall…
- What is abrosexualAbrosexual is a sexual orientation identity where a person's sexual attraction changes or fluctuates…
- What is abgABG is an Indonesian acronym standing for 'Anak Baru Gede,' which refers to adolescent girls or teen…
- What is aaaAAA batteries are a standard cylindrical battery size measuring 10.5mm in diameter and 44.5mm in len…
- What is aacAAC (Advanced Audio Codec) is a digital audio compression format that provides better sound quality …
- What is aaa gameAAA games are high-budget video games developed by large studios with budgets typically exceeding $1…
- What is a proxyA proxy is a server that acts as an intermediary between your device and the internet, forwarding yo…
- What is ableismAbleism is discrimination and prejudice against people with disabilities based on the assumption tha…
- What is absAbs, short for abdominal muscles, are the muscles in your core that flex your spine and stabilize yo…
- What is abortionAbortion is a medical procedure that ends pregnancy by removing the fetus before viability. It can b…
- What is accutaneAccutane (isotretinoin) is a powerful prescription medication derived from vitamin A used to treat s…
- What is acetaminophenAcetaminophen, also known as paracetamol, is an over-the-counter pain reliever and fever reducer use…
- What is acidAcid is a chemical substance that donates protons (hydrogen ions) to other substances, characterized…
Also in Daily Life
- How To Save Money
- Why are so many white supremacist and right wings grifters not white
- Does "I'm 20 out" mean youre 20 minutes away from where you left, or youre 20 minutes away from your destination
- Why are so many men convinced that they are ugly
- What does awol mean
- What does asl mean
- What does ad mean
- What does asap mean
- What does apex mean
- What does asmr stand for
- What does atp mean
- What causes autism
- What does abg mean
- What does am and pm mean
- What does a fox sound like
More "What Is" Questions
Trending on WhatAnswer
Browse by Topic
Browse by Question Type
Sources
- Wikipedia - DMARC CC-BY-SA-4.0
- DMARC.org - Official Information Educational