ARC makes DMARC even better

DMARC is foundational for email security, and now things are only going to get better with the development of ARC.

What is ARC?

ARC stands for Authenticated Received Chain. It was developed in 2016 to resolve some issues that may arise with how SPF, DKIM, and DMARC cope with indirect mail flow.

So what was the problem?

DMARC currently relies on the pass result and alignment of either SPF or DKIM to make a decision on what to do with an email. If one protocol fails but the other passes and aligns then DMARC will pass. However, in some specific cases with indirect mail flow, both SPF and DKIM might fail to result in DMARC failure.

This is because if a sender has a DMARC policy of reject and an email:

  • a) travels through a mailing list
  • b) passes through a filtering service
  • c) is forwarded
  • or d) has its content modified

then both SPF and DKIM might fail, and hence DMARC might also fail. This means the email will never reach the end user’s mailbox.

SPF tends to break during forwarding due to the change of IP address that happens during forwarding. DKIM may also break if the content of the email is altered in transit, such as putting an unsubscribe footer at the bottom of a mailshot.

How is ARC the solution?

ARC was developed to preserve the authentication results of emails when traveling across many hops as it inserts its own headers. This means that if DMARC fails during transit the recipient might choose to look at the ARC results instead, overriding the results from DMARC and accepting the emails.

Who’s supporting ARC right now?

ARC has already been implemented by some well-known ESPs and ISPs, like AOL and Gmail, and others are on the way too. Of course, Red Sift supports ARC too! Our award-winning DMARC product OnDMARC quickly and simply informs users whenever an email’s DMARC results are trumped by ARC.

Interested in seeing how OnDMARC can help you improve your security, protect your brand, and boost your deliverability too? Enjoy a free trial below!

free trial red sift

PUBLISHED BY

Clare Holmes

15 Jan. 2018

SHARE ARTICLE:

Categories

Recent Posts

VIEW ALL
Email

The best tools to protect yourself from SubdoMailing

Francesca Rünger-Field

In late February 2024, ‘SubdoMailing’ became a trending search term overnight. Research by Guardio Labs uncovered a massive-scale phishing campaign that had been going on since at least 2022. At the time of reporting, the campaign had sent 5 million emails a day from more than 8,000 compromised domains and 13,000 subdomains with several…

Read more
Product Release

Red Sift’s Spring 2024 Quarterly Product Release

Francesca Rünger-Field

This early into 2024, the cybersecurity space is already buzzing with activity. Emerging standards, such as Google and Yahoo’s bulk sender requirements, mark a new era of compliance for businesses reliant on email communication. At the same time, the prevalence of sophisticated cyber threats, such as the SubdoMailing campaign, emphasizes the continual hurdles posed…

Read more
Email

Navigating the “SubdoMailing” attack: How Red Sift proactively identified and remediated a…

Rebecca Warren

In the world of cybersecurity, a new threat has emerged. Known as “SubdoMailing,” this new attack cunningly bypasses some of the safeguards that DMARC sets up to protect email integrity.  In this blog we will focus on how the strategic investments we have made at Red Sift allowed us to discover and protect against…

Read more
Email

Where are we now? One month of Google and Yahoo’s new requirements…

Rebecca Warren

As of March 1, 2024, we are one month into Google and Yahoo’s new requirements for bulk senders. Before these requirements went live, we used Red Sift’s BIMI Radar to understand global readiness, and the picture wasn’t pretty.  At the end of January 2024, one-third of global enterprises were bound to fail the new…

Read more