Learn about DMARC, SPF, and DKIM

Welcome to DMARCPal's Learn blog. Check our posts to discover and learn more about DMARC, SPF, DKIM, and how to get the most value of your DMARCPal subscription.

If you are a Google Workspace user and use Google Calendar, you may have noticed some DMARC fails on your DMARC reports.

Here’s a sample record extracted by DMARCPal Record Explorer showing the issue:

Record with failed DMARC check

The problem is caused by Google sending those emails from domains that don’t align with the...

We’ve seen this happening to a few domains hosted on Google Workspace: DKIM is properly set up on the domain, Gmail works, and DMARC passes.

All seems fine, except that DKIM is not authenticating emails “From” the user domain.

Gmail works. The domain admin think that DKIM is doing the right th...

Not a long time ago, Internet email was based on trust. Trust on the servers, trust on the people running the servers.

Trust that who you see in an email “From” is really who wrote that message.

As of 2020 about 3+ billion forged emails are sent in a day, and it is safe to say (no pun intended...

DKIM is short for DomainKeys Identified Mail. It is a mechanism to verify that some core information of an email message, such as its body, and the “From” and “Subject” lines, are authentic and haven’t been tampered with by someone while the email was in transit.

So when you send an email using...

By default, any computer connected to the Internet can send emails pretending to come from your domain.

That’s true. If you registered example.com for your business and just configured basic email (i.e for sending and receiving XXX@example.com messages), then someone on a cybercafe on the ot...

This happens more often than we think: an employee receives an email from his boss requesting him to do something.

It might be something as simple as requesting a document.

Or more serious, such as the credentials to the company’s social media accounts. Or to transfer several thousand dollars to...