What is DKIM?
DKIM, or DomainKeys Identified Mail, is a security feature for email that helps protect both email senders and recipients from certain types of scams, such as email spoofing, where the sender’s address is forged. Here’s how it can be understood from an end-user perspective:
- Digital Signature: When an email is sent, the outgoing server attaches a digital signature to the message. This signature is created based on the content of the email and a private key that is only known to the sender’s email server.
- Verification Key: The recipient’s email server checks this digital signature by looking up a public key that is published in the sender’s DNS records. This public key can verify the signature attached by the sender’s server.
- Checking Authenticity: If the digital signature matches the public key, it confirms that the email has not been tampered with during transit and that it truly comes from the claimed domain. This is a way of verifying the sender’s identity.
- Trust and Security: As an end user, DKIM adds an extra layer of trust, ensuring that the emails you receive are from legitimate sources and haven’t been altered. You generally won’t see this process happening—it’s all done in the background by the email servers.
For you as an end user, DKIM works quietly to ensure that the emails you receive are safer and more secure, helping protect you from fraud and phishing attacks that rely on fake email identities.
DKIM Tools
This is a link to a DKIM record check and generator tool
https://easydmarc.com/tools/dkim-lookup