Skip to main content
Log in
CaptainDNS

Email Diagnostics

Tools to verify and validate your email authentication setup.

SPF
DKIM
DMARC
DMARCbis
BIMI
MTA-STS
TLS-RPT
DANE / TLSA

Deliverability

Email deliverability auditMail header analyzerEmail testerIP Blacklist CheckerDomain Blacklist CheckerSPF FlattenerDKIM Selector FinderSMTP/MX Tester

Secure & Monitor

Record generators, policy hosting and continuous monitoring.

Network & Web

Network tools, web page analysis and certificates.

IP Tools

My IP address

Detect your IPv4/IPv6 addresses and their geolocation.

Reverse lookup

Resolve a PTR record and validate DNS consistency.

IP WhoIs

Identify the owner of an IP range and its contacts.

IPv4 netmask

Calculate network, broadcast and usable hosts for any IPv4 block.

IPv6 subnet calculator

Calculate IPv6 subnets, address ranges and reverse DNS entries.

Certificates & BIMI

BIMI logo lookup

Inspect a BIMI logo URL - format, metadata and live rendering - before rollout.

BIMI SVG converter

Convert any SVG to BIMI-compliant Tiny-PS format in seconds.

CSR parser

Inspect a CSR, extract subject details, fingerprints and requested SANs.

VMC inspector

Inspect a Verified Mark Certificate - issuer, validity and SAN coverage - before you publish BIMI.

Web

Page size checker

Check if your page exceeds Google's 2 MB crawl limit.

Phishing URL Checker

Check if a URL is flagged as phishing or malware by 4 threat intelligence sources.

Redirect Checker

Analyze HTTP redirect chains

Domain Redirect

Redirect your domains with automatic HTTPS and 301/302 redirects.

HTTP Uptime Monitor

Monitor your sites with scheduled HTTP checks and email alerts.

Status Pages

Publish a public status page grouping your HTTP monitors.

Developer Tools

Text utilities and tools for everyday dev work.

Text

Transform and measure your content in seconds.

Text case converter

Convert any block of text to upper or lower case instantly.

Slug generator

Transform any sentence into an SEO-friendly slug in seconds.

Word & character counter

Measure the length of any text, with instant word and character counts.

Password generator

Generate strong random passwords and memorable passphrases instantly.

Developer

Encoding, hashing, regex and formatting for everyday dev work.

Base64 encoder / decoder

Encode or decode any content in Base64 without leaving the browser.

Hash Generator

Compute MD5, SHA-1, SHA-256 and SHA-512 hashes of any text.

URL encoder / decoder

Encode or decode text using percent-encoding (RFC 3986) right in your browser.

Regex Tester

Test a regular expression against text and visualize matches.

JSON / YAML Formatter

Format, validate and convert JSON and YAML in one click.

🇨🇦 Email Security in Canada

Weekly audit of email security across 61 listed companies headquartered in Canada.

61 companies analysed · Scan week: 2026-03-23

  • Listed companies headquartered in Canada score an average of 49/100 for email authentication and DNS security.
  • 0% of Canada companies achieve grades A+ or A in email security, while 46% score D or F.
  • This is 7 points above the global average of 42 across all 1601 companies in the observatory.
  • DMARC email authentication is deployed by 98.4% of Canada companies, with 65.6% enforcing a reject policy to prevent domain spoofing.
  • SPF records are published on 93% of analysed domains, authorizing legitimate email senders.
  • BIMI brand indicator adoption stands at 15% in Canada.
  • MTA-STS enforced TLS encryption is deployed by 0% of companies, securing inbound email delivery.
  • DNSSEC domain signing is active on 11.5% of Canada domains.
  • The highest-scoring company is Loblaw Companies with 73/100 (B).
  • First Quantum Minerals trails at 14/100, with significant room for improvement.
  • Scores range from 14 to 73 with a median of 51, showing disparate email security postures across Canada listed companies.

Average score

49/ 100

DMARC reject

65.6%

BIMI configured

15%

MTA-STS enforce

0%

DNSSEC enabled

11.5%

0
A+
0
A
3
B
30
C
24
D
4
F

49

Average

51

Median

14

Min

73

Max

Grade
1Loblaw Companiesloblaw.ca73B
2Thomson Reuters Corporationthomsonreuters.com73B
3Enbridgeenbridge.com70B
4Celesticacelestica.com69+2C
5Fortis Inc.fortisinc.com69C
6Magna Internationalmagna.com66C
7CGI Inc.cgi.com62C
8Metro Inc.metro.ca59C
9Canadian Pacific Kansas Citycpkcr.com59C
10Canadian National Railwaycn.ca59C
11Royal Bank of Canadarbc.com58C
12CIBCcibc.com58C
13Shopifyshopify.com57C
14Shopifyshopify.com57C
15Telustelus.com56C
16Power Corporation of Canadapowercorporation.com56C
17Bank of Montrealbmo.com56C
18Bank of Nova Scotiascotiabank.com55C
19National Bank of Canadabnc.ca55C
20George Westonweston.ca55C
21Emeraemera.com55C
22Waste Connectionswasteconnections.com55C
23Canadian Natural Resourcescnrl.com55C
24Wheaton Precious Metalswheatonpm.com54C
25OpenTextopentext.com54C
26Camecocameco.com53C
27Agnico Eagle Minesagnicoeagle.com52C
28CCL Industriescclind.com52C
29Fairfax Financial Holdingsfairfax.ca52C
30Franco-Nevadafranco-nevada.com51C
31CAE Inc.cae.com51C
32Sun Life Financialsunlife.com50C
33Teck Resourcesteck.com50C
34Hydro Onehydroone.com49D
35Constellation Softwarecsisoftware.com49D
36Dollaramadollarama.com48D
37TC Energytcenergy.com48D
38Imperial Oilimperialoil.ca47D
39Toronto-Dominion Banktd.com47D
40Nutriennutrien.com46D
41Pembina Pipelinepembina.com46D
42Manulife Financialmanulife.com46D
43Suncor Energysuncor.com46D
44Saputosaputo.com46D
45Barrick Miningbarrick.com44D
46Intact Financialintactfc.com44D
47WSP Globalwsp.com44D
48BCE Inc.bce.ca44D
49Cenovus Energycenovus.com44D
50Rogers Communicationsrogers.com43D
51Canadian Tirecanadiantire.ca41D
52Restaurant Brands Internationalrbi.com41D
53Alimentation Couche-Tardcouche-tard.com39D
54Kinross Goldkinross.com38D
55FirstService Corporationfirstservice.com36D
56Tourmaline Oiltourmalineoil.com35D
57Gildan Activeweargildancorp.com32D
58Brookfield Asset Managementbam.brookfield.com18F
59Brookfield Corporationbn.brookfield.com18F
60Brookfield Infrastructure Partnersbip.brookfield.com18F
61First Quantum Mineralsfirst-quantum.com14F

Understanding country-level analysis

Grouping companies by country reveals how corporate email security practices vary across markets. Countries with stricter regulatory environments or more mature cybersecurity ecosystems tend to show higher average scores.

What this page shows:

  • Average score - The mean email security score across all listed companies in this country
  • Grade distribution - How many companies fall into each grade bracket (A+ through F)
  • DMARC reject rate - The percentage of companies enforcing strict DMARC policies
  • Company table - Individual scores, grades and key indicator status

Key standards tracked

Each company is evaluated on:

  1. SPF - Is the sending policy properly configured? Does it use -all (hard fail)?
  2. DKIM - Are signing keys published and strong enough (2048-bit minimum)?
  3. DMARC - Is a policy in place? Is it set to quarantine or reject?
  4. BIMI - Is the brand logo published for inbox display?
  5. MTA-STS - Is inbound email transport encryption enforced?
  6. DNSSEC - Is the DNS zone signed to prevent spoofing?

FAQ - Frequently asked questions

Q: How are companies grouped by country?

A: Based on the stock exchange where they are listed.

Q: What standards are checked?

A: SPF, DKIM, DMARC, BIMI, MTA-STS, DANE/TLSA and DNSSEC.

Q: Can I compare countries?

A: Yes, via the Statistics page.

PagePurpose
Observatory DashboardOverall overview with key metrics
StatisticsCross-country and cross-sector comparison
Email Domain CheckAudit your own domain
Email Security of Listed Companies in Canada