Back in February I was invited to Ottawa, as part of my duties with CAUCE, to attend a session hosted by the Canadian Radio-television and Telecommunications Commission (CRTC) about CASL enforcement and some of the clarifications and Guidance that was previously published last October. I felt the sessions went quite well and the mood in the room was typically very positive, but mixed with a touch of apprehension because of the number of...

Guest post by: Shaun Brown Industry Canada published draft Electronic Commerce Protection Regulations (the “Draft Regulations”) under Canada’s Anti-Spam Legislation (CASL) for comment in the Canada Gazette on January 5, 2013. Industry Canada and the Canadian Radio-television and Telecommunications Commission (CRTC) share responsibly for developing regulations under CASL, and since the CRTC published its Electronic...

Recently Hotmail has made two technology shifts in their email authentication solutions, adopting DMARC and switching from Sender ID to SPF. These are significant changes for the platform as the Sender ID solution has traditionally been championed by the Microsoft team while many other ISPs and webmail providers opted for SPF as their email authentication solutions. Why has Hotmail shifted away from Sender ID? While I have not talked to...

Guest post by: Shaun BrownIn March of this year, the Canadian Radio-television and Telecommunications Commission (CRTC) published its Electronic Commerce Protection Regulations (CRTC) (the “Regulations”) under Canada’s Anti-Spam Legislation (CASL). Yesterday the CRTC issued two compliance and enforcement information bulletins that provide “guidelines on the interpretation of the Regulations” and examples of...

After a month of reading DMARC reports I find I’m still asking myself – What is the next step? How does this help me (and in turn you)? I’ll hopefully have better answers later this week after my meeting with a couple of DMARC data experts. Remember I’m running in reporting only mode at the moment and just trying to grasp how bad the spoofing issues for email addresses @emailkarma.net are… Sadly Pharmacy Bots...

Recently EmailKarma.net email addresses started to see a lot of bounced email for messages that we didn’t send, this is common from viruses and bots that forge the sender and have bounces generated to an unsuspecting third party. Being that we are already SPF and DKIM compliant I decided to publish our DMARC records to see how bad the spoofing problem really is. As a result of this I’ve also decided to share this experience...