Friday, 23 October 2015

Google Will Implement Stricter DMARC Policies For Gmail

Google next year, the emails that Gmail users receive stringent filtering, as the Internet giant announced. Emails that do not meet the requirements will be refused DMARC from June 2016.DMARC (Domain-based Message Authentication, Reporting and Conformance) is a standard developed by fifteen leading Internet companies, including Microsoft, Facebook, LinkedIn and Google.

Through the new policy change, Google will soon emails from refuse which addresses claiming to be from Google's servers, but do not originate in reality. This should for instance prevent spoofing or phishing attacks. The stricter DMARC standard was already through AOL set and Yahoo. Yahoo will DMARC next month also and's set.

Google also announced to support the new ARC protocol. The Authenticated Received Chain (ARC) protocol is designed to prevent problems with DMARC. It is in this case added to a cryptographically signed header to the message. At present, many legitimate emails from forwarding services and mailing lists rejected because they do not meet the DMARC requirements. The ARC-protocol must ensure that such services the forwarded e-mails still can authenticate that they are accepted.

No comments:

Post a Comment