DKIM
What is DKIM?
DKIM stands for "DomainKeys Identified Mail" and is an email authentication method that uses cryptographic signatures to verify the authenticity of email messages.
DKIM works by adding a digital signature to the header of outgoing emails. This signature is created using a private key that only the authorised sender has access to. The corresponding public key is published in the sender's DNS records.
When an email is received, the receiving mail server (like Gmail or Outlook) can use the public key to verify the digital signature.
If the signature is valid, it confirms that:
- The email was actually sent from the claimed domain.
- The email content hasn't been altered during transmission.
- The email wasn't forged by someone else.
DKIM helps protect against email spoofing, phishing, and other email-based attacks by providing a way to verify the authenticity of email messages.
Example
When you send an email through EcoSend, the system automatically adds a DKIM signature to your email headers.
The receiving mail server (like Gmail or Outlook) will check your domain's DNS for the DKIM public key and use it to verify the signature.
If the signature is valid, the email is more likely to be delivered to the inbox rather than the spam folder.
If the signature is invalid or missing, the email might be flagged as suspicious or rejected entirely.