What is DMARC?

DMARC, also known as Domain based Message Authentication Reporting and Conformance, is defined in RFC 7489. It is a policy layer that sits on top of SPF and DKIM. It tells mailbox providers how to handle messages that fail authentication and provides visibility into who is sending on behalf of your domain.

It is the Reporting and Conformance parts that make DMARC unique. It transforms authentication signals into actionable policy and returns feedback that shows exactly how your domain is being used.

DMARC gives domain owners the power to say this is how my domain should behave and this is what to do when something does not match. It is the navigation chart that keeps your domain’s identity from drifting into dangerous waters.