DMARC email assessment

DMARC policies and preferences for message validation

DMARC assessment for somebody@whatsapp:/send

Domain-based Message Authentication, Reporting and Conformance (DMARC) is an email-validation system to detect and prevent email spoofing. It is intended to combat certain techniques often used in phishing and email spam, such as emails with forged sender addresses that appear to originate from legitimate organizations.

DMARC is built on top of two existing mechanisms, Sender Policy Framework (SPF) and DomainKeys Identified Mail (DKIM). It allows the administrative owner of a domain to publish a policy on which mechanism (DKIM, SPF or both) is employed when sending email from that domain and how the receiver should deal with failures.

An email is often considered to have passed a DMARC assessment if either SPF or DKIM pass, however with increasing levels of spam, organisations are moving to requiring both to pass.

The Domain Owner has not implemented DMARC.

They may still be using alternative mechanisms including SPF and DKIM.

SPF assessment for somebody@whatsapp:/send

The Sender Policy Framework (SPF) is used to authorize hosts sending email and help identifying spoofing.

Sender Policy Framework (SPF) is an email-validation system to detect email spoofing by providing a mechanism to allow checking that incoming mail from a domain comes from a host authorized by that domain's administrators.

whatsapp:/send has not implemented the Sender Policy Framework (SPF) so does not authrorise any sources of email.

DKIM assessment for somebody@whatsapp:/send

DomainKeys Identified Mail (DKIM) is an email authentication method designed to detect email spoofing by affixing a digital signature. It allows the receiver to check that an email claimed to come from a specific domain was indeed authorized by the owner of that domain.

As a digital signature is added to individual emails, this site only identifies the policy for somebody@whatsapp:/send as published by their DMARC policy.