Securing of the email communication can’t go through evolution and there has to be a revolution. Phishing and spam is one a rise. There are attempts how to mitigate spam and phishing by better antispam filters and by technologies like SPF, DKIM and DMARC. Unfortunately these technologies are still only an option and they are not mandatory.
When Google claimed that all websites on HTTP protocol will be marked as unsecure and only websites with HTTPS protocol will be shown in “normal way” it started a revolution. All the websites started using secure protocol and even it was possible to obtain a certificate for free.
There wasn’t such revolution with emails and it should be. I understand that mandatory validation by SPF and DKIM doesn’t solve all problems. For example it can’t help with compromised computers that send emails in “valid way”. Even though it would be a good start on the field of secure emails.