What is DMARC?
Before we dive into how DMARC Monitor services can improve your email security, let us first understand DMARC. DMARC is Domain-based Message Authentication, Reporting, and Conformance.
- A user-friendly tool to protect your email domain from phishing or spoofing attacks
- Created by PayPal in collaboration with Google, Microsoft and Yahoo.
- Helps in quickly putting an efficient policy into place that tells email receivers what to do if any email fails to pass the DMARC check.
How does DMARC Monitor by Logix help your email domain security?
- Continuously analyzes your email domain to help stop hackers from sending fraud emails posing as you.
- Automatically keeps an eye on who sends emails on our behalf and also blocks unauthenticated senders from misusing your email domain.
- Validates the authenticity of your emails by working closely with SPF and DKIM mechanisms.
What are SPF and DKIM?
- SPF stands for Sender Policy Framework.
- SPF is an open system based on DNS-based email authentication.
- Allows sending domains to define which IP addresses are allowed to deliver email to receiving mail servers on behalf of your domain.
- DKIM stands for DomainKeys Identified Mail.
- It is a free technology used to trace a piece of email back to the domain that sent it.
- Uses public/private key encryption to authenticate email messages.
Features of DMARC Monitor
Details of DMARC Monitor plans
|DMARC Monitor Express – Bronze||DMARC Monitor Express – Silver||DMARC Monitor Express – Gold||DMARC Monitor – Annual|
|2 Active Domain||5 Active Domain||25 Active Domain||Number of Active Domain – TBD|
|5 Inactive Domains||10 Inactive Domains||100 Inactive Domains||Number of Inactive Domains – TBD|
|Unlimited Report Gathering||Unlimited Report Gathering||Unlimited Report Gathering||Unlimited Report Gathering|
|Log Retention Period 365 Days||Log Retention 365 Days||Log Retention 365 Days||Log Retention 365 Days|
|Push Notification||Push Notification||Push Notification||Push Notification|
|Cousin Domain Name Reporting||Cousin Domain Name Reporting||Cousin Domain Name Reporting||Cousin Domain Name Reporting|
|Standard Support with Only One Review Meeting||Standard Support with Only One Review Meeting||Standard Support with Only One Review Meeting||One Quarterly Review Meeting (Online) 4 Meetings|
|Improvements to be implemented from findings of the One review meeting||Improvements to be implemented from findings of the One review meeting||Improvements to be implemented from findings of the One review meeting||Improvements to be implemented from findings of the Quarterly review meetings|
Who has purchased DMARC Monitor?
Kotak Mahindra Bank
What are the policies of DMARC?
DMARC policies are instructions given to receiving email servers on how to treat emails that fail DMARC checks.
- If DMARC is not implemented, emails will not be validated and your email domain can be misused.
- Your email domain is safe only when the DMARC policy status is Quarantine or Reject.
- With DMARC Monitor, we analyze your email traffic diligently before setting the DMARC Monitor policy to Quarantine or Reject to prevent genuine emails from getting blocked.
Policy set to
The receiving server will not take any actions and would report back to the sender that it failed DMARC validation.
The messages will be sent to recipient’s junk/spam folder and a report will be sent to sender on why message failed validation.
The messages will be blocked and a report will be generated.
Highlights of the DMARC Monitor services
- Detailed XML reports are generated and sent to the user.
- These reports specify the senders’ email address and also whether messages have passed SPF and DKIM or not.
- If any phishing is detected, the identity of the users sending fake messages on your behalf is also known in these reports.
- Moreover, reports also contain statistics on emails passing DKIM / SPF checks.
- The reports generated may contain deep and complicated data which could be challenging for a user to interpret.
- This complicated data is interpreted to give you actionable steps.
- The reports generated help identify servers/IPs which are sending emails on behalf of your domains.
- When the user approves the server IP as valid one, the SPF records are updated.
- All servers including the corporate email system will have to pass through the common email gateway which enforces DKIM.
- These two email authentication protocols are fortified with DMARC policies that tells receivers what to do with email messages that fail to pass SPF / DKIM validation.
- DMARC also enables senders to receive data back from the receivers.
- This process helps in verifying fraudulent email patterns.
- If a misuser sends email on your behalf, the user will receive proper feedback about this fraud behavior recognized by DMARC Monitor.
DMARC compliance is a set of specifications dictated by the DMARC protocol.
- More than 90% Compliance is marked as p=quarantine.
- If DMARC Monitor consistently reports 90% or above compliance, then we set your DMARC policy to p=reject, thus helping you achieve 100% DMARC compliance.