7.8: Implement DMARC and Enable Receiver-Side Verification
CSF v1.1 References:
PF v1.0 References:
Threats Addressed:
Next Version:
- Critical Security Controls Version 8:
- 9.5: Implement DMARC
Control Statement
To lower the chance of spoofed or modified emails from valid domains, implement Domain-based Message Authentication, Reporting and Conformance (DMARC) policy and verification, starting by implementing the Sender Policy Framework (SPF) and the DomainKeys Identified Mail(DKIM) standards.
[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]