Dmarc as a Service

True visibility and control with DMARC reporting

As the first application built on the Valimail Identity-Driven Email Anti-impersonation (IDEA)™ platform, Valimail Enforce™ was purpose-built to make the journey to DMARC enforcement drastically easier through true automation and visibility.

When it comes to visibility, we believe that your data is only as good as the format in which it’s presented.

Many of Valimail’s customers send billions of emails a month, so you can imagine the wealth of data they have available. The Valimail Enforce™ reporting suite makes it easy to consume and extract actionable intelligence out of massive amounts of DMARC data — without touching any PII. These reporting tools make Valimail an indispensable tool for uncovering sending trends and accelerating your path to enforcement.

Here’s a snapshot of the reporting tools we provide to our customers.

Valimail turns DMARC aggregate reports into actionable data about global email.

Global view of suspicious senders

The first thing you’ll notice in the Enforce dashboard is a global view of all malicious senders impersonating your organization’s domain.

Here you get a holistic look at suspicious senders by country, giving you a firm starting point on threat detection and protection.

Valimail gives you drill-down reporting for DMARC data analysis

Four-dimensional drill-down reporting

We give you the ability to slice and dice your data across multiple axes including domain, sender, day, and country. This provides deep insights into your email authentication effort, especially in multi-domain environments.

Suppose you’re managing email authentication across a large organization that owns hundreds of domains and subdomains. The ability to automatically identify and pinpoint third party senders (and the sending volume associated with each one) across specific domains and countries becomes an extremely powerful tool in controlling shadow IT and improving compliance.

This cross-domain reporting functionality is also valuable in providing insight and diagnosing sending problems. For instance, you can drill down into a particular service (like Mailchimp) and see all the domains using it. That could uncover problems limited to a specific domain for a given service.

Discover who is sending email on your domains with Valimail's DMARC reporting tools

Visualizing your path to authentication

The Email Disposition report provides a granular look at various delivery statuses in a given date range. The value here is in knowing what has and hasn’t been enforced across your domains, which can help you get closer to enabling DMARC enforcement.

  • The “Allowed Through – No Enforcement” status shows the number of emails sent from domains you own that are not at DMARC enforcement. All emails represented in this status get through to the inboxes they’re sent to, regardless of which service sent them. While that’s not a problem for legitimate mails you send, it represents a major risk of exact-domain impersonation attacks. Once you reach enforcement, giving you full control and protection over outbound email from your domain/s, this number will be zero.
  • The “Allowed Through – Policy Override” status shows emails that failed DMARC authentication but were allowed through due to an override. An override is a decision by the receiver to ignore the DMARC policy. A good example is Gmail overriding a failed DMARC alignment in order to accept a forwarded group email that it’s certain is actually non-malicious.
  • The “Allowed Through – With Enforcement” status shows emails that passed DMARC authentication and were sent from domains are at enforcement. This is the number of emails that were successfully delivered after passing DMARC authentication.
  • The “Quarantined” status represents part of the message volume from domains at enforcement, showing the number of emails marked as spam by the end user’s email provider as a result of failing DMARC authentication.
  • The “Rejected” status also represents a part of the enforced domain message volume, showing the number of emails that failed DMARC authentication and never reached the inbox.

As the world’s only fully automated email authentication solution, Valimail Enforce removes the operational complexity and IT time and expense from the process of deploying and managing DMARC. Valimail’s reporting tools provide the granular visibility you need to get your organization to enforcement efficiently, and to keep you there for good.

Don’t just take our word for it. IT leaders at Splunk, Yelp, and City National Bank rave about Valimail’s automated approach to DMARC enforcement and our reporting tools. Watch the video.

Related Articles

Subscribe to our newsletter