Message Certification is a process by which one entity vouches for or "certifies" the good email conduct of another entity. Consequently, when this certifying entity is one whom a receiving email server trusts, messages sent from a domain who is vouched for by that entity can be viewed with less suspicion. Thus the receiving server can be reasonably assured that the sending domain adheres to a set of good email practices and doesn't send spam or other problematic messages. Certification is beneficial because it can help ensure that messages will not be erroneously or needlessly subjected to unwarranted spam filter analysis. It also helps lower the resources required to process each message.
MDaemon supports Message Certification through the "Vouch-By-Reference" (VBR) mail protocol, which MDaemon Technologies helped create through its participation in the Domain Assurance Council (DAC). VBR provides the mechanism through which Certification Service Providers (CSP) or "certifiers" vouch for the good email practices of specific domains.
It is easy to configure MDaemon's Message Certification feature to check incoming messages. All you have to do is click the Enable certification of inbound messages option on the VBR Certification dialog (Security » Security Settings » Sender Authentication » VBR Certification) and include one or more certification providers whom you trust to vouch for incoming email (e.g. vbr.example.com). You can also choose either to exempt certified messages from spam filtering or give their Spam Filter scores a beneficial adjustment.
Before you can configure MDaemon to insert certification data into your outgoing messages, you will first need to arrange to have one or more CSPs certify your email.
To configure your MDaemon server to use Message Certification with your outgoing mail, after you have registered with a CSP:
1.Open the VBR Certification dialog: click Security » Security Settings » Sender Authentication » VBR Certification.
2.Click "Insert certification data into outgoing messages."
3.Click "Configure a domain for message certification." This opens the Certification Setup dialog.
4.Type the Domain name whose outgoing messages will contain the certification data.
5.Use the Mail type drop-down list to choose the type of email that your CSP agrees to certify for this domain, or enter a new type if the desired type isn't listed.
6.Enter one or more CSPs who will certify the domain's outbound email. If you have more than one CSP then use a space to separate each one.
7.Click "OK."
8.Configure your server to sign the domain's outgoing messages with DKIM, or ensure that they are being sent from an SPF approved server. This is necessary in order to guarantee that the message originated from you. A message cannot be certified unless the receiving server can first determine that the message is authentic.
VBR does not require the certified messages to be signed by or transmitted to your CSP. The CSP is not signing or validating specific messages—it is vouching for the domain's good email practices. |
VBR Specification - RFC 5518:
http://tools.ietf.org/html/rfc5518
For more information on DKIM visit:
See: