Back to Top

Help & Support

Get instant answers 24/7

DomainKeys Identified Mail (DKIM) is an email authentication method designed to help protect both email senders and recipients from fraudulent emails. It enables an organization to take responsibility for a message that is in transit. The primary goal of DKIM is to allow the recipient to confirm that the email was sent and authorized by the domain owner.

How DKIM Works

DKIM uses a pair of cryptographic keys, one private and one public, to verify the email's authenticity. The private key is used by the sending mail server to digitally sign the email, including the headers and body, typically in a way that is transparent to the sender and receiver. The corresponding public key is published in the organization’s DNS records. Email recipients can then use this public key to decode the signature and verify that the message was not altered after it was sent.

Benefits of DKIM

  • Increased email deliverability: Many large email providers, including Gmail and Yahoo are starting to block emails that are not DKIM signed.
  • Email Integrity: By verifying that the content of the email has not been changed during transit, DKIM provides a layer of integrity assurance.
  • Domain Reputation: DKIM helps build a domain's reputation, which can improve email deliverability. ISPs and email services often trust emails from domains with good reputations more, reducing the likelihood of emails being marked as spam.
  • Phishing and Spoofing Protection: DKIM helps prevent email spoofing by making it hard for attackers to fake the source of an email, which is a common tactic in phishing attacks.

Implementing DKIM

Implementing DKIM with SpamHero is easy. See:

How do I enable SPF and DKIM for emails sent from my domain?

Last updated April 23, 2024