This refers to an email-validation system created to identify and prevent phishing and spoofing. It relies on two known mechanisms to do the job – the DomainKeys Identified Mail (DKIM) and the Sender Policy Framework (SPF). With a DMARC, a sender can set a public policy (p=) to command the ISPs on what to do with mails that are not authenticated.
With DMARC, Internet Service Providers (ISPs) are better positioned to stop malicious email practices from happening, including domain spoofing to phish for the personal information of recipients.
What DMARC does is to allow senders to decide on what to do with emails without DKIM or SPF authentications. For instance, senders can send such emails to the junk folder or block them completely. This decision-making responsibility allows ISPs to easily identify spammers and stop malicious emails before they get to the inboxes of consumers. It also reduces false positives and offers improved authentication reporting and overall transparency.