Browse Prior Art Database

Domain-based Message Authentication, Reporting, and Conformance (DMARC) (RFC7489) Disclosure Number: IPCOM000241013D
Original Publication Date: 2015-Mar-01
Included in the Prior Art Database: 2015-Mar-19

Publishing Venue

Internet Society Requests For Comment (RFCs)

Related People

M. Kucherawy: AUTHOR [+3]


The Sender Policy Framework ([SPF]) and DomainKeys Identified Mail ([DKIM]) provide domain-level authentication. They enable cooperating email receivers to detect mail authorized to use the domain name, which can permit differential handling. (A detailed discussion of the threats these systems attempt to address can be found in [DKIM-THREATS].) However, there has been no single widely accepted or publicly available mechanism to communication of

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 2% of the total text.

Independent Submission                                 M. Kucherawy, Ed. Request for Comments: 7489 Category: Informational                                   E. Zwicky, Ed. ISSN: 2070-1721                                                   Yahoo!                                                               March 2015

 Domain-based Message Authentication, Reporting, and Conformance (DMARC)


   Domain-based Message Authentication, Reporting, and Conformance    (DMARC) is a scalable mechanism by which a mail-originating    organization can express domain-level policies and preferences for    message validation, disposition, and reporting, that a mail-receiving    organization can use to improve mail handling.

   Originators of Internet Mail need to be able to associate reliable    and authenticated domain identifiers with messages, communicate    policies about messages that use those identifiers, and report about    mail using those identifiers.  These abilities have several benefits:    Receivers can provide feedback to Domain Owners about the use of    their domains; this feedback can provide valuable insight about the    management of internal operations and the presence of external domain    name abuse.

   DMARC does not produce or encourage elevated delivery privilege of    authenticated email.  DMARC is a mechanism for policy distribution    that enables increasingly strict handling of messages that fail    authentication checks, ranging from no action, through altered    delivery, up to message rejection.

Status of This Memo

   This document is not an Internet Standards Track specification; it is    published for informational purposes.

   This is a contribution to the RFC Series, independently of any other    RFC stream.  The RFC Editor has chosen to publish this document at    its discretion and makes no statement about its value for    implementation or deployment.  Documents approved for publication by    the RFC Editor are not a candidate for any level of Internet    Standard; see Section 2 of RFC 5741.

   Information about the current status of this document, any errata,    and how to provide feedback on it may be obtained at

 Kucherawy & Zwicky            Informational                     [Page 1]
 RFC 7489                          DMARC                       March 2015

 Copyright Notice

   Copyright (c) 2015 IETF Trust and the persons identified as the    document authors.  All rights reserved.

   This document is subject to BCP 78 and the IETF Trust's Legal    Provisions Relating to IETF Documents    (