When the message is delivered, the receiving server obtains the DKIM record from the DNS records for.Before sending the message, the sending server signs the email using a private key.Imagine an email sent by For DKIM to work properly, the following steps take place: To understand DKIM, it may be helpful to understand how email is sent when DKIM is added to the process. The DKIM public-key cryptography process allows recipients to be confident of a sender's authenticity. This TXT record will contain a public key that's used by receiving mail servers to verify a message's signature. A domain owner also adds a DKIM record, which is a modified TXT record, to the DNS records on sending domain. When sending email with DKIM enabled, the sending server signs the messages with a private key. Specifically, DKIM attempts to prevent the spoofing of a domain that's used to deliver email.ĭKIM employs the concept of a domain owner who controls the DNS records for a domain. DomainKeys Identified Mail (DKIM) is an authentication standard used to prevent email spoofing.
