Valimail Industry Leadership
Our commitment to restoring email trust.
With deep expertise in internet security and resilient infrastructure, the Valimail team regularly contributes to standards and threat detection communities — driving today’s email authentication policies and tomorrow’s cybersecurity advancements. We have a corporate commitment to lifting up the messaging industry as a whole and working collaboratively with partners throughout the ecosystem to restore trust to email.
We participate in several organizations working to make a difference.
We write and maintain open source code used by the largest mailbox providers (like Oath/Yahoo!) and make our contributions available to all, fixing issues in an accessible, scalable, global way.
We contribute to the protocols that continue to advance email and make it better for everyone.
AuthIndicators Working Group
AuthIndicators Working Group works to create a richer, more trustworthy inbox experience for all email users worldwide while increasing the use of authentication to reduce email fraud and is the creator of the Brand Indicators for Message Identification (BIMI) standard.
Health Information Sharing and Analysis Center
H-ISAC is a global, non-profit, member-driven organization offering health care stakeholders a trusted community and forum for coordinating, collaborating and sharing vital Physical and Cyber Threat Intelligence and best practices with each other.
Domain-based Message Authentication Reporting and Conformance builds on the widely deployed SPF and DKIM protocols, adding linkage to the author (“From:”) domain name, published policies for recipient handling of authentication failures, and reporting from receivers to senders, to improve and monitor protection of the domain from fraudulent email. Valimail is deeply involved in the DMARC working group at IETF, working to broaden and strengthen its reach.
DomainKeys Identified Mail (DKIM CRypto UPdate) working group is chartered to update DomainKeys Identified Mail (DKIM, RFC 6376) to handle more modern cryptographic algorithms and key sizes. As shepherds of DCRUP (RFC 8301), Valimail played a key role in the publishing and availability of this standard. We advocate for cryptographic updates that make DKIM stronger.
The Authenticated Received Chain (ARC) protocol allows Internet Mail Handlers to attach assertions of message authentication state to individual messages. As messages traverse ARC-enabled Internet Mail Handlers, additional ARC assertions can be attached to messages to form ordered sets of ARC assertions that represent authentication state along each step of message handling paths. Valimail and Google are two of the editors of the ARC specification. Together, we are working to build ARC as a supplemental but crucial piece of the current DMARC standard.