Home | Sitemap | Recent Changes | Login

SPF Logo

Sender Policy Framework

Project Overview

About SPF

Welcome to the Sender Policy Framework project!

Read an introduction to what SPF is, or about how SPF fits into the bigger picture of e-mail authentication.

Further Reading

Contacting Us

For questions not answered by the website or the forums, or for media inquiries, please contact us directly.

Deploying SPF

Publishing SPF Records

SPF Record Syntax – The SPF record syntax in detail.

ToolsSPF record testing tools.

Common mistakes – Mistakes to avoid when publishing SPF records.

Checking SPF

Implementations – Mail servers and clients that support SPF or can be extended to do so. SPF libraries for various programming languages.

Specifications – The SPF technical reference (RFC 4408) and its predecessors. Please update your implementations!

Test Suite – A test suite to help verify that an SPF implementation conforms to RFC 4408.

Community & Help

The Community section of the website can be freely edited by everybody.

It has a place where you can share your story and read other people's stories.

Support – Where to get support for deploying SPF.

Forums – The project's mailing lists and IRC channel for technical, scientific, and political discussions about SPF and e-mail authentication.

Meetups – Meet members of the SPF community in person.

The SPF Council

The 2007 council election | members | Council resolutions

News

Recent changes to this site | News | Press releases

Standards track update of SPF published by the IETF (RFC 7208) (2014-04-25)

The RFC Editor published RFC 7208 today. More ...

Standards track update of SPF approved by IESG (RFC 4408bis) (2014-01-17)

The IESG announced today that it had approved draft-draft-ietf-spfbis-4408bis as a Proposed Standard. More ...

BITS Publishes New Email Authentication Policy and Deployment Strategy for Financial Services Firms (2013-02-25)

BITS has published an updated document recommending deployment of SPF and DKIM in conjunction with a newer technology, DMARC. More ...

Standards track extension of SPF approved by IESG (2012-03-20)

The IESG announced today that it had approved draft-ietf-marf-spf-reporting as a Proposed Standard. More ...

New IETF Working Group for SPF Chartered (2012-02-03)

The IESG yesterday approved the charter for SPFbis. More ...

New anti-spoofing protocol built on SPF (2012-01-30)

Fifteen leading email service and technology providers are today announcing DMARC.org, a technical working group that has been developing standards for reducing the threat of deceptive emails, such as spam and phishing. More...

US Senate Adopts SPF to Rebut Future Hoaxes (2010-07-08)

A new e-mail validation system in the Senate will verify that all e-mails sent from Senate.gov addresses originate from legitimate — not "cloaked" — servers, the sergeant at arms announced Wednesday. More...

Australian Department of Defense Recommends SPF (2009-09-30)

In their new version of the Australian Government Information Security Manual, the Defence Signals Directorate has recommended use of SPF in conjunction with other email related security technologies such as TLS and DKIM. More...

MAAWG published revised Sender Best Communication Practices 2.0 (2008-06-02)

The Messaging Anti-Abuse Working Group stated in their latest BCP: "At the very least, senders should incorporate SPF records for their mailing domains". More...

US financial services industry group endorses SPF (2007-04-21)

BITS, a nonprofit industry consortium formed by many of the largest financial institutions in the USA, has announced their BITS Email Security Toolkit white-paper, recommending the deployment of SPF next to TLS and DKIM in order to address the identity forgery and phishing problems of e-mail. More...

More news...