DMARC.ORG – A Fight Against Phishing with Leading Email Senders and Providers
Feb 1st, 2012
Have you ever been cheated by a phishing email? You think of a mail as sent by your bank and end up losing your money? Or your social networking profile is being compromised by clicking on links in any email? Email Phishing, one of the biggest threats in the field of cyber security has harmed innumerable people and still a permanent solution is missing for the same. But situation might change soon as most of the leading email providers have united with DMARC to provide safer email solutions and eliminating threat of phishing.
DMARC, which stands for “Domain-based Message Authentication, Reporting & Conformance“, is a technical specification created by a group of organizations that want to help reduce the potential for email-based abuse by solving a couple of long-standing operational, deployment, and reporting issues related to email authentication protocols.
For most of the end users or receivers of emails, it’s very difficult to find out whether the email is authentic or a phishing attack. So email providers try to take care of this. Techniques like SPF (Sender Policy Framework) and DKIM (Domain Keys Identified Mail) are used till now but none of them gives a surety. Providers cannot make out if a sender is implementing these standards or not. So there are always chances of phishing.
|DMARC and the Email Authentication Process|
What DMARC has come up with in their latest press release, is a kind of mutual standard exchange. In simple words, both senders and providers will follow and share guidelines. Senders will share policies with providers to prove their authenticity. Providers will also share detailed reports back to senders to fill if any gaps are present. According to Paul Smocer, President of BITS, the technology policy division of The Financial Services Roundtable
“BITS has been committed to defining and improving email authentication standards and practices to meet the financial services industry’s needs. DMARC’s evolutionary approach is critical in assuring these needs are met for years to come,”
Let’s hope that we will get a more secured and robust email system by join efforts of DMARC and all email providers. Hackers will have to work harder to break the upcoming security systems. So the battle between good and bad is on.