Retarus Corporate Blog - US Retarus Corporate Blog - US
Blog
  • USA/Canada
    • Global
    • D/A/CH
    • Spain
    • Italy
    • France
Select Page
Retarus Website

New authentication requirements for Gmail and Yahoo: What senders of large email volumes need to consider now

by Sören Schulte | 01/11/2024 | Business Trends, Product News

New authentication requirements for Gmail and Yahoo: What senders of large email volumes need to consider now

Google and Yahoo are getting serious: for senders who send more than 5,000 emails per day, stricter requirements regarding the authentication of messages will apply starting February 2024. In order to further reduce the amount of spam in inboxes, the providers are making standards such as SPF, DKIM, and even DMARC mandatory for their free email services.

So, especially for companies that send large volumes of emails to end customers via business applications, there is an urgent need for action. Below we have compiled a summary of what exactly you need to bear in mind.

Which authentication changes you should make immediately

To ensure proper authentication, you should make the following changes to the DNS entry for your domains:

SPF

SPF (Sender Policy Framework) is a type of DNS TXT record that allows senders to specify which IP addresses are authorized to send email on behalf of a particular domain, for example

v=spf1 ip4:1.2.3.4 ip4:2.3.4.5 include:thirdparty.com -all  

This indicates that a recipient should only accept emails from a domain that either originates from IP address 1.2.3.4 or 2.3.4.5 or from an IP address that belongs to the DNS record of “thirdparty.com”.

DKIM

DKIM is a process to validate sending domain names associated to email messages through cryptographic authentication. It achieves this by inserting a digital signature into the message header which is then verified by the receiving host to validate the authenticity of the sending domain.  There are plenty of website that can help you create DKIM DNS header, for example socketlabs.com

Free web-based DKIM generator
Free web-based DKIM generators can be helpful in creating a corresponding DNS header. Source: socketlabs.com

DMARC

DMARC is an open email authentication protocol that provides domain-level protection of the email channel. DMARC authentication detects and prevents email spoofing techniques used in phishing, business email compromise (BEC), and other email-based attacks.

In addition to SPF and DKIM, DMARC is also a technology being used to make the header “from” domain trustworthy. The domain owner publishes a DMARC record in the DNS to tell receivers what to do with emails that fail authentication.

For example

v=DMARC1; p=quarantine; rua=mailto:rua@example.com; ruf=mailto:ruf@example.com; fo=1

If you are new to DMARC then you might initially consider setting p=none

“List Unsubscribe” mandatory from June 1

In addition to proper authentication, there are a number of other requirements to consider in order to optimize the delivery rates of your messages. For instance, from June 1st, Gmail will also require a simple, integrated “List Unsubscribe” function.

Also ensure your spam complaint rate at Gmail is less than 0.3% at all times. This means a maximum of three complaints per 1,000 emails, a figure that is quickly reached.
You should therefore…

  • continue to consistently avoid sending emails to people without permission and buying emails from dubious email databases
  • include a clearly visible unsubscribe link in every email and/or support the list unsubscribe function (see also above)
  • immediately remove recipients who have objected to receiving emails from your mailing lists and not contact them again

What other steps can you take to improve email deliverability?

Maintain your mailing lists

Google have introduced a new policy where inactive mailboxes will be deleted, so it is important that you filter out subscribers who haven’t engaged with your emails in more than six months. If it’s been years since someone last clicked on your emails then consider removing them immediately. Features such as the “Suppresion List” help you in this endeavor.

Support the use of BIMI standards and VMC certificates

BIMI or ‘Brand Indicators for Message Identification’ is an open system used by businesses to check an email’s authenticity.  It works in a similar way to the other DNS based authentication methods where meta-data is stored in a specific DNS record. This meta data contains a Verified Mark Certificate (VMC) which can be obtained from certificate authorities such as Entrust and Digicert which the mail client can validate.

From a senders perspective, it improves the chances of being delivered and it also displays your defined logo as the sender of the message enhancing brand recognition in a potentially cluttered mailbox.

Compliance with RFC5322

Make sure that your messages are formatted correctly and comply with the RFC5322 standard so that they are not rejected by the mail systems. All of the requirements mentioned are of course fully supported when sending via Retarus Transactional Email. Feel free to learn more about the topic of email reputation and transactional email deliverability on our website.

Thanks to their many years of experience, Retarus’ email experts can support you from onboarding to the ongoing optimization of your email jobs. If you would like to learn more about your potential for optimizing your email communication, feel free to contact us at any time.

Share this post:

Related Posts:

guido-hofmann-QRRL9si4PW8-unsplash
Suppression list: What it is and why it's key to…
Hand,Of,Man,Drowning,In,Red,Like,Symbols,And,Speech
Service Wow! Send large volumes of automated emails…
retarus_ms_1280
Retarus – the perfect addition to Microsoft 365 and…

Tags: Email Security // Transactional Email

Submit a Comment Cancel reply

Your email address will not be published. Required fields are marked *

Latest posts

  • Retarus Achieves HITRUST e1 Certification
  • ActFax expands Retarus integration with Cloud Fax inbound API
  • Microsoft imposes new sending limits for external M365 traffic
  • Retarus at Microsoft AppSource
  • Opening a new portal to the world of cloud faxing

Always up to date

The Retarus Newsletter regularly informs you about new services, messaging challenges and their solutions, as well as business trends and the resulting technological developments …
Sign up now!

About Retarus

Our vision is to be the global leader for enterprise-level cloud solutions, enabling business communication in a reliable, efficient, and compliant manner.
Learn more

Popular Products

  • Cloud Fax
  • Enterprise SMS
  • Transactional Email
  • Email Security
  • WebConnect for Suppliers

Company

  • Company Profile
  • Retarus Enterprise Cloud
  • Retarus Messaging Platform
  • Retarus Secure Email Platform
  • Business Integration and Automation
  • Career Portal

Resources

  • Retarus Blog
  • Press Center
  • Newsletter
  • Customer Stories and Use Cases
  • Whitepapers, Guides, Reports
  • Events and webinars
  • Product Documentation Center
  • API Knowledge Center

Support

  • +49 89 5528-2525
  • support@retarus.com
  • Retarus System Status

Sales

  • Get in touch

ImprintLegal DisclaimerPrivacy Policy

  • LinkedIn
  • RSS