DMARC e-mail security is a way to authenticate email to help eliminate abuse of your email account. It utilizes DomainKeys Identified Mail and Sender Policy Framework. It's designed for senders and receivers to cooperate more about what is shared in emails. At the senders end, it helps to improve the infrastructure of the email system so that all of their emails can be authenticated. Another good feature of DMARC is that it gives domain owners the flexibility to allow email messages that might be illegitimate to go directly into a spam folder or to be rejected. This includes spam or phishing schemes.

DKIM detects email spoofs. It checks to make sure that incoming email is authorized to be received by the administrators of the domain. SPF also provides the same type of mechanism. The list of authorized senders is is published in the DNS or Domain Name System. DMARC sorts through all the authentication standards and allows the sender to specify which method it uses. For example, SenderID, SPF, or DKIM.

Individuals and companies all receive high volumes of spam. Systems have been devised to attempt to authenticate emails, but spammers have become adept at making their emails appear to be authentic, and unfortunately some recipients have revealed personal information to spammers. A legitimate government agency or company will not ask for personal information such as passwords.

The biggest problem with these systems is that they work individually and not in cooperation with one another, which gives the edge to the spammers and people conducting illegal activity on the internet. When the users work separately, each one has its own decisions regarding how to evaluate the email, and the legitimate owner of the domain never gets feedback from the recipient. What DMARC attempts to do is signal domain owners that they're using a verified authentication method, either DKIM or SPF.

DMARC allows domain owners to provide an authentic email address that gathers information from the sender and get feedback about all messages sent to their domain, whether or not they're authentic. DMARC also allows domain owners to establish their own policies about how to handle email messages that don't pass the authentication test. They may either filter them, reject them, or report them. This is one effective way to cut down on the number of phishing schemes online.

When a domain owner implements authentication checks using DMARC, it has the flexibility to use the system in monitor code, which collects data from all receivers that are participating. As they collect data from the receivers that participate, they'll see that legitimate emails are passing authentication, and they can update their policy by requesting that emails that don't pass authentication are quarantined.