Do You Use SPF, DKIM, and DMARC to Authenticate Outgoing Email?

Apr 23, 2022 at 03:21 pm by pj


What do SPF, DKIM, and DMARC mean, and what do they do?

By JAMES GENTRY

 

(Second, of a Multi-Part Series)

 

SPF, DKIM, and DMARC are designed to help confirm that emails that come from your domain are not forgeries or sent by an impostor. 

You will need to know a few basic things to understand how this works:

 Now what do those acronyms mean?

 

Why are SPF, DKIM, and DMARC important?

Email spoofing* has become common.  Such emails appear to come from within your organization.  Impostors may use malicious links in spoofed emails to commit phishing attacks, social engineering scams, or ransomware attacks. 

 

(See Part 1 of this series: Cyber Insurance Applications: New Stringent Requirements Are NOT Designed to Protect YOU)

 

Example: a spoofed email appearing to come from upper management is sent to a lower-level employee (or other managers) with an urgent request.  The recipients, believing that the email came from a trusted source, may be fooled into clicking something dangerous or may follow instructions that lead to ransomware, data theft, or even fraudulent wire transfers. 

Likewise, a spoofed email could be sent to vendors, customers, or others—also with an urgent request.  Remember: These types of emails are designed to get the recipient to panic and act quickly without thinking. 

Using SPF or DKIM can greatly reduce spoofing attacks.  Using SPF, DKIM, and DMARC all together can possibly even eliminate spoofing attacks.

Does your business already use SPF, DKIM, and/or DMARC?

You or your IT provider can fairly easily determine if your email is authenticated by SPF, DKIM, and/or DMARC.  The method depends on your email provider and whether you have your own email domain.  Here are the differences:

 

As for how to determine what (if anything) you have in place, you can click on the following links.  Enter your email domain to get your results:

 

Do you need help understanding or implementing SPF, DKIM, and/or DMARC?

If your business is not using authentication, or if you cannot determine its use with certainty, you will need to ask your email provider or your IT staff to help.  If you don’t have anyone to ask, you can reach out to Atlantic Data Team, and we will help you find out at no charge.  We are committed to making the web a safer place.

In next month’s article, I will discuss Remote Desktop Protocol (RDP) and how to keep your remote users working safely.  Stay vigilant!

James Gentry is the president of Atlantic Data Team, a central-Florida-based business IT company. If you cannot get a straight answer on whether you use filtering or not, we will be happy to help you, at no charge to determine if you are protected.  We are committed to making the web a safter place. For more information go to www.atlanticdatateam.com   or email office@atlanticdatateam.com

Sections: Business/Technology