The Effective Email Authentication Best Practices

News from Omniquad | NOV 18, 2019

You all may be familiar that the government mandated a strict DMARC policy for gov domains (including SPF, DKIM, and DMARC at p=reject), and moving all sites to secure “https” URLs: “Within one year. way back in October 16, 2018.

As a security vendor we see around 20% of our customers, institutions have implemented the strongest Domain-Based Message Authentication (DMARC) policy which means 80% have published no DMARC record at all.

Implementing simple, yet effective email authentication best practices DMARC helps to prevent certain types of spam and phishing attacks by verifying that the domain of the sender hasn’t been impersonated. However, it must be set to p=reject in order to prevent suspicious emails being sent to customer inboxes.

The need for improved anti-phishing measures is heightened. Here at OMNIQUAD, we recommend all our customers move towards full implementation of DMARC at a pace that allows for troubleshooting and feedback at each policy stage—from Monitor to Quarantine to Reject. By working with the right vendor, you can be sure that you have hold on every single email coming from your domain/domains, before you make a costly mistake.

In the meantime you can start training your users – contact your reseller or us directly at to start your free trial.