Sign in
  • Home
  • Products
    • Enforce
    • DMARC Monitor
    • Instant SPF
    • Amplify
  • Solutions
    • Anti-phishing
    • Brand protection
    • Compliance
    • Government
    • Marketing
    • Microsoft
    • Shadow IT
  • About
    • News + awards
    • Partners
    • Team
    • Careers
    • Industry leadership
    • Customer support
  • Learn
    • Resources
    • Blog
    • Customers
  • Support
Request phishing analysis
  • Products
    • Enforce
    • DMARC Monitor
    • Instant SPF
    • Amplify
  • Solutions
    • Anti-phishing
    • Brand protection
    • Compliance
    • Government
    • Marketing
    • Microsoft
    • Shadow IT
  • About
    • News + awards
    • Partners
    • Team
    • Careers
    • Industry leadership
    • Customer support
  • Learn
    • Resources
    • Blog
    • Customers
  • Get started for free
  • Support
  • Sign in
Check to see if you’re protected
☰
Check to see if you’re protected
Share this article
Related posts
  • Blog
    Research: Only 22 of the top 100 retailers are protected by DMARC
  • Blog
    DMARC authentication gets you the deliverability you deserve
  • Blog
    How vulnerable are U.S. election operations to email spoofing?
Valimail blog

ARC: A standard we’re proud to support

Author: Seth Blank
ARC: a standard we support

The Internet works best when companies come together to work collaboratively on open standards that benefit us all — and because our business is built on one of those standards, DMARC, Valimail believes strongly in the importance of giving back. That’s why Valimail has been a committed contributor to open-source and industry standards bodies since we were founded in 2015.

Case in point: We’ve worked closely with industry leaders to draft the proposed standard for Authenticated Relay Chain (ARC), for which I’m proud to be listed as a co-editor. We’ve also contributed extensively by shipping code. We’ve developed an ARC test suite, and used that to drive development and further contributions to core ARC libraries like OpenARC, dkimpy, and Mail::DKIM.

So we’re gratified when we see other companies joining the bandwagon and supporting ARC. Two years ago, there was a strong belief that ARC was what the ecosystem needed to resolve existing shortcomings, but the standards and software needed to implement it were sorely lacking. Since then, it has progressed to the point where most of the major email service providers are conducting tests and seriously considering rolling it out. We’re proud of the work we’ve done to help bring it to this point, and we’re happy to see more and more companies joining the ARC effort.

ARC solves one of the last remaining obstacles to widespread DMARC adoption: The difficulty that email authentication has when mail is sent via an intermediary, either through an alias (like a college alumni forwarding address) or through a mailing list (like the Mailman discussion lists used by many internet standards bodies for coordination and collaboration). Although this problem affects a very small percentage of overall email volume, it can cause DMARC authentication to fail when it shouldn’t — and that’s a problem.

ARC addresses this by letting intermediaries attach and sign authentication information they receive, essentially creating a chain of trusted signatures. Receivers can validate every step of the chain, all the way back to the originating server, and they can leverage the information intermediaries added to make final delivery decisions they otherwise would have been unable to make. This gives email services a flexible, robust way to handle email authentication even when messages pass through multiple forwarders.

Like DMARC, ARC will only succeed if it broadly adopted and widely supported. DMARC now enjoys the support of nearly 80 percent of all email inboxes worldwide, and the number of domains deploying DMARC records has tripled in the past year. We look forward to the day when ARC is just as ubiquitous!

Back to blog
Published February 16, 2018
  • ARC
Author: Seth Blank
Seth is the director of industry initiatives for Valimail.
Resources
Email Fraud Landscape Spring 2021
Learn more
Top retailers remain vulnerable to email brand spoofing
Learn more
Email security with Microsoft and Valimail
Learn more
Election email security
Learn more
Email fraud landscape, Summer 2020
Learn more
Latest news
Trump’s refusal to concede the election is creating an opening for cy...
Learn more
2020 General Election Results to Directly Impact Tech Industry
Learn more
Why Email Is Still an Election Day Disinformation Risk
Learn more
US elections are still vulnerable to email spoofing
Learn more
Security Gaps Persist, Report Warns, After U.S. Blames Iran In Election Sch...
Learn more
Press releases
Valimail Report Reveals 3 Billion Spoofed Emails are Sent Every Day
Learn more
Valimail Triples Customer Base, Becomes Top Global DMARC Provider in 2020
Learn more
Valimail: 2020 election infrastructure still vulnerable to email hackers
Learn more
Valimail Announces Selection by ASG for Anti-Phishing and BEC Protection
Learn more
Valimail DMARC Monitor and Valimail Enforce Now Available in the Microsoft ...
Learn more
Follow us
Contact us

P: 888.354.6179
E: info@valimail.com

Headquarters

1942 Broadway St., Ste. 314C
Boulder, CO 80302

Request a full phishing analysis
© Valimail
  • Terms of use
  • Privacy Policy
  • Website terms of use
  • Do not sell my personal information
  • Phishing Analysis
  • Domain Checker
  • Products
  • Enforce
  • DMARC Monitor
  • Instant SPF
  • Amplify
  • Solutions
  • Anti-phishing
  • Brand protection
  • Compliance
  • Government
  • Marketing
  • Microsoft
  • Shadow IT
  • About
  • News + awards
  • Partners
  • Team
  • Careers
  • Industry leadership
  • Customer support
  • Learn
  • Resources
  • Blog
  • Customers
Subscribe to our newsletter

Get exclusive content on improving email security and deliverability from the experts at Valimail.

  • *
    I understand that I may proactively manage my preferences, or opt-out of Valimail communications at any time using the unsubscribe link provided in Valimail email communication. I confirm that I am over the age of 16. The information that you provide will be used in accordance with the terms of our Privacy Policy.
  • This field is for validation purposes and should be left unchanged.