More than 144 billion emails are sent every day and a large portion of that are vital transactional emails sent from businesses across the world. As a result the incentive for spamming and phishing attacks is on the rise. The only true way to know whether the emails in your inbox are coming from a verified sender is to use DNS.
Traditionally, DNS is associated with keeping websites performing fast and preventing downtime. However, Domain-based Message Authentication, Reporting & Conformance (DMARC) is a new way of authenticating email delivery by using DNS. DMARC standardizes how email receivers perform authentication by using Sender Policy Framework (SPF) and DomainKeys Identified Mail (DKIM). These two technologies both store their records in DNS.
This works by allowing a sender to indicate that valid emails from their company are protected by SPF and/or DKIM. If the email that arrives does not pass either of those authentication methods, then the receiver knows to junk or reject the email, thereby avoiding harmful messages. This method eliminates the guesswork, which is why Dyn, the worldwide leader in Internet Infrastructure as a Service, recommends it to their email clients.
"We use DMARC on Dyn's corporate mail and are advising customers on how to use it as well," said Mike Veilleux, Dyn Director of Email Product. "The cost of having your passwords compromised is becoming so high that you can never be too safe. Using DMARC is just another security layer we advise."