Mastering New Email Authentication Standards: Insights from Industry Leaders

Recently, I had the privilege of watching the online discussion “Insider Insights: Mastering New Email Authentication Standards,” hosted by Twilio. The session was led by Shanelle Thadani, the Senior Product Marketing Manager for Email API at Twilio, and Len Shneyder, the Senior Director of Industry Relations at Twilio. The panel featured prominent experts including Seth Blank, the CTO of Valimail; Clea Moore, Principal Product Manager at Yahoo; Ebenezer Anjorin, Lead Product Manager at Google; and Ross Adams, Principal PM Architect at Microsoft. Each brought unique perspectives on the new email authentication standards and their implications for the industry. This is my summary report and my key takeaways from the hour-long webinar.

The Rationale Behind the New Standards

The webinar kicked off with Shanelle Thadani explaining the new email authentication standards introduced by Google and Yahoo in October 2023. These changes are designed to enhance email security and deliverability by ensuring only authenticated emails reach users’ inboxes. Len Shneyder emphasized the necessity of these changes for protecting brands and improving user experience.

Importance of DMARC

Seth Blank from Valimail highlighted the crucial role of DMARC (Domain-based Message Authentication, Reporting, and Conformance) in preventing email spoofing and phishing attacks. Clea Moore from Yahoo noted that while DMARC adoption is increasing, many small senders still face challenges in implementation. Larger enterprises should already have robust DMARC policies to safeguard their brand reputation.

Impact on Deliverability

Proper email authentication has a direct impact on deliverability. Clea Moore reiterated that sending emails to users who have explicitly given permission remains the best practice. Authenticated emails are more likely to reach the inbox, while non-compliant emails risk being marked as spam. Ross Adams from Microsoft added that user choice is paramount, and authentication ensures users receive the emails they want.

Resources and Tools

During the discussion, several essential resources and tools were highlighted to help senders comply with the new standards:

• Google Postmaster Tools
• Yahoo Sender Hub
• Outlook.com Postmaster

Shanelle Thadani also mentioned that Twilio SendGrid now offers a baseline DMARC policy of P=none and supports one-click unsubscribe to improve email deliverability and user experience.

Navigating Future Pathways

Ebenezer Anjorin from Google explained that while the initial focus is on the consumer experience, the goal is to eventually apply these standards universally. Businesses need to start implementing these practices now to stay ahead of future requirements.

Key Takeaways

1. Assess Current Email Authentication: Ensure DMARC policies are in place and move from P=none to enforcement policies like quarantine or reject.
2. Implement One-Click Unsubscribe: Simplify the opt-out process for users to reduce spam rates and improve deliverability.
3. Utilize Available Tools: Use Postmaster Tools and resources from industry leaders to monitor and improve email authentication practices.
4. Prepare for Future Requirements: Stay proactive in updating and aligning with new standards to maintain email deliverability and security.

Final Thoughts

Len Shneyder closed the session by emphasizing that email security is a shared responsibility. The new standards represent a collective effort to ensure emails are delivered securely and effectively, benefiting both senders and recipients. By adhering to these requirements, companies can enhance their email practices and contribute to a safer email ecosystem.

—

Thanks for reading! — Bobby