Posture Scoring

Your Posture Score is a 0–100 composite trust rating derived from the inverse of your Conviction Engine malicious confidence score. A score of 100 means zero detected signals of compromise or misconfiguration. A score below 70 indicates enforcement gaps that warrant immediate remediation.

Score Composition

The Posture Score reflects the aggregate health of your email authentication infrastructure:

• DMARC enforcement state — p=reject at pct=100 is the gold standard. p=quarantine with partial pct reduces the score proportionally. p=none or missing eliminates the enforcement layer entirely.
• SPF mechanism strength — Hardfail (-all) indicates full enforcement. Softfail (~all) reduces the score. Missing SPF is a critical gap.
• DKIM verification status — Passive DNS cannot confirm active signing; this creates a floor on the maximum achievable score until mail-flow verification is completed.
• Threat feed correlation — If your sending infrastructure appears in abuse databases or threat feeds, the score reflects that exposure.

Score Thresholds

• 90–100: Strong posture. Active protective controls across all three protocols. Continue monitoring.
• 70–89: Moderate posture. Enforcement gaps present. Review remediation checklist and prioritize highest-severity items.
• Below 70: Elevated exposure. Immediate remediation recommended. Schedule an Institutional Briefing to review findings.

Improving Your Score

The Remediation Checklist on your Email Posture page ranks action items by impact. In most cases, three changes drive the largest score improvements: escalating DMARC to p=reject, upgrading SPF to -all hardfail, and completing DKIM selector verification through mail-flow analysis.