Presentation is loading. Please wait.

Presentation is loading. Please wait.

Domain-based Authentication, Reporting, and Conformance

Published byYanti Tanuwidjaja Modified over 6 years ago

Similar presentations

Presentation on theme: "Domain-based Authentication, Reporting, and Conformance"— Presentation transcript:

1 Domain-based Authentication, Reporting, and Conformance
DMARC Domain-based Authentication, Reporting, and Conformance DMARC for campus

2 Domain-based Authentication, Reporting, and Conformance
DMARC Domain-based Authentication, Reporting, and Conformance What is DMARC? An standard that allows providers to to verify that was sent from a valid address. Case 1: from to Gmail asks WiscMail servers, “Is this legitimate?” WiscMail servers, “Yes, that is legitimate. Bucky rocks!” Gmail delivers mail to

3 Domain-based Authentication, Reporting, and Conformance
DMARC Domain-based Authentication, Reporting, and Conformance How does DMARC work? systems “talk” to each other using the DMARC standard to verify senders are legitimate. Case 2: from to WiscMail servers ask MSU servers, “Is this legitimate?” MSU, “Nope! We don’t know who that is!” WiscMail potential actions include: deliver block quarantine discard

4 Domain-based Authentication, Reporting, and Conformance
DMARC Domain-based Authentication, Reporting, and Conformance Who is impacted by this change? Any system “spoofing” or impersonating a UW Madison addresses UW-Madison users who send messages thru 3rd- party mass providers (e.g. MailChimp, Constant Contact, etc.) using address as the “From” address.* Non-UW-Madison accounts which send as an @wisc.edu address (e.g. Gmail account configured to send as address). Third-party scripts/servers that don’t send using on-campus mail services which are sending “FROM” a wisc.edu address. * Can be configured to send DMARC compliant

5 Domain-based Authentication, Reporting, and Conformance
DMARC Domain-based Authentication, Reporting, and Conformance Who is not impacted by this change? UW-Madison Office 365 web client, desktop app, and mobile app Individuals sending outbound Office 365 add-ons for mail-merge functionality Systems which are able to authorize end-users’ use of their own address within the system List servers configured to work with DMARC* UW-Madison lists Google Groups  UW-Madison campus SMTP Relay service *Departmental and off-campus list servers need to be updated to support DMARC

6 Domain-based Authentication, Reporting, and Conformance
DMARC Domain-based Authentication, Reporting, and Conformance How does this impact UW Madison inbound/outbound messages? Inbound Inbound messages (from any source other than the UW- Madison Office 365 tenant) which spoof address will be flagged as SPAM. These messages will either be rejected by the system, quarantined, or delivered to the intended recipient’s SPAM folder. Outbound Recipient systems (e.g. Gmail, etc.) will reject or quarantine messages which spoof address.

7 Domain-based Authentication, Reporting, and Conformance
DMARC Domain-based Authentication, Reporting, and Conformance What can you do to ensure you are compliant with DMARC standards? Faculty/Staff/Students No changes necessary unless they are sending messages from a non-UW service which is “spoofing” an @wisc.edu address. Domain/Application/System Admins See the DMARC Website for more information on how to achieve DMARC compliance. Contact 3rd-Party providers to determine if they are capable of DMARC compliance. If you manage a system which sends through a mechanism other than UW Madison mail relay, contact the ECC Team for a consultation.

8 Domain-based Authentication, Reporting, and Conformance
DMARC Domain-based Authentication, Reporting, and Conformance What is the timeline? Current and Ongoing Execute communication plan Develop domain policies with Hostmaster Convert campus relayers Fall/Winter 2018 Tag subjects of inbound mail violating DMARC standard Publish SPF ~all for wisc.edu (following conclusion of Spring semester) Spring/Summer 2019 (Tentative) Publish 1% DMARC record for wisc.edu Fall 2019 (Tentative) Publish DMARC record for wisc.edu

9 Domain-based Authentication, Reporting, and Conformance
DMARC Domain-based Authentication, Reporting, and Conformance Questions?

Download ppt "Domain-based Authentication, Reporting, and Conformance"

Similar presentations

An introduction to the State’s E-mail Encryption Service State of Minnesota Office of Enterprise Technology and Department of Human Services.

An introduction to the State’s Encryption Service State of Minnesota Office of Enterprise Technology and Department of Human Services.
Addressing spam email and enforcing a Do Not Email Registry using a Certified Electronic Mail System Information Technology Advisory Group, Inc.

Addressing spam and enforcing a Do Not Registry using a Certified Electronic Mail System Information Technology Advisory Group, Inc.
© 2007 Convio, Inc. Implementation of Sender ID Bill Pease, Chief Scientist Convio.

© 2007 Convio, Inc. Implementation of Sender ID Bill Pease, Chief Scientist Convio.
1 Aug. 3 rd, 2007Conference on Email and Anti-Spam (CEAS’07) Slicing Spam with Occam’s Razor Chris Fleizach, Geoffrey M. Voelker, Stefan Savage University.

1 Aug. 3 rd, 2007Conference on and Anti-Spam (CEAS’07) Slicing Spam with Occam’s Razor Chris Fleizach, Geoffrey M. Voelker, Stefan Savage University.
Microsoft Ignite /16/2017 1:30 PM

Microsoft Ignite /16/2017 1:30 PM
Kerberos Authenticating Over an Insecure Network.

Kerberos Authenticating Over an Insecure Network.
Sender policy framework. Note: is a good reference source for SPFhttp://www.openspf.org/

Sender policy framework. Note: is a good reference source for SPFhttp://
Office 365 SMTP Relay June 2013. Relay Method Send to rcpts in domain Relay to Internet via O365 Configuration Requirements Requires Authentication.

Office 365 SMTP Relay June Relay Method Send to rcpts in domain Relay to Internet via O365 Configuration Requirements Requires Authentication.
Pro Exchange SPAM Filter An Exchange 2000 based spam filtering solution.

Pro Exchange SPAM Filter An Exchange 2000 based spam filtering solution.
Managing and Avoiding Junkmail. Junk E-mail  Where does Junk Mail come from? People with whom you do business  Pepsi Friends of people with whom you.

Managing and Avoiding Junkmail. Junk  Where does Junk Mail come from? People with whom you do business  Pepsi Friends of people with whom you.
CT NIKHEF Nov 2003 1 Mail NIKHEF CT system support.

CT NIKHEF Nov Mail NIKHEF CT system support.
» Explain the way that electronic mail (e-mail) works » Configure an e-mail client » Identify e-mail message components » Create and send e-mail messages.

» Explain the way that electronic mail ( ) works » Configure an client » Identify message components » Create and send messages.
Email management solutions Crossware Mail Signature Email Branding and Compliance Made Easy for Lotus Notes www.crossware.co.nz Server Install Options.

management solutions Crossware Mail Signature Branding and Compliance Made Easy for Lotus Notes Server Install Options.
Message Trace Office 365 May 2013.

Message Trace Office 365 May 2013.
Anti-Spam & Anti-Virus WiscMail Implementation University of Wisconsin - Madison CSG Workshop September 21, 2004.

Anti-Spam & Anti-Virus WiscMail Implementation University of Wisconsin - Madison CSG Workshop September 21, 2004.
Visit www.EmailDelivered.com for Email Marketing and Deliverability Tips, Tools, & Trainingwww.EmailDelivered.com.

Visit for Marketing and Deliverability Tips, Tools, & Trainingwww. Delivered.com.
Information Technology Services 1 Copyright Copyright Marc Wallman and Theresa Semmens, 2006. This work is the intellectual property of the authors. Permission.

Information Technology Services 1 Copyright Copyright Marc Wallman and Theresa Semmens, This work is the intellectual property of the authors. Permission.
Review of Last Session Search Engine Optimisation (SEO) Search Engine Optimisation (SEO) You can fine-tune your site so that the search engines notice.

Review of Last Session Search Engine Optimisation (SEO) Search Engine Optimisation (SEO) You can fine-tune your site so that the search engines notice.
CensorNet Ltd An introduction to CensorNet Mailsafe Presented by: XXXXXXXX Product Manager Tel: XXXXXXXXXXXXX.

CensorNet Ltd An introduction to CensorNet Mailsafe Presented by: XXXXXXXX Product Manager Tel: XXXXXXXXXXXXX.
11 SECURING INTERNET MESSAGING Chapter 9. Chapter 9: SECURING INTERNET MESSAGING2 CHAPTER OBJECTIVES  Explain basic concepts of Internet messaging. 

11 SECURING INTERNET MESSAGING Chapter 9. Chapter 9: SECURING INTERNET MESSAGING2 CHAPTER OBJECTIVES  Explain basic concepts of Internet messaging. 

Similar presentations

Ads by Google